Slashdot Mirror

← Back to Stories (view on slashdot.org)

Serious Vulnerability In Firefox 2.0.0.12

Posted by kdawson on from the that-was-quick dept.

Oh, Not Now writes "Mozilla Firefox 2.0.0.12, mere hours old, is vulnerable by default to a directory traversal trick, via the view-source mechanism. Although mitigated by the NoScript plug-in, this is quite a serious bug — the default installation is vulnerable from the get-go."

8 of 355 comments (clear)

  1. Re:Fixed is hours! by Anonymous Coward · · Score: 2, Funny

    >Microsoft products are getting better. Deal with it. Quit living in the past.

    So are realplayer's products, but you don't see anyone telling anyone to install them.

  2. Re:saved passwords by Nazlfrag · · Score: 3, Funny

    There's this thing called carbon-based memory I use from time to time. Efficient, portable, unfortunately it is easily broken by Johnny Walker and co.

  3. Re:NoScript by milsoRgen · · Score: 4, Funny

    On a similar note, I would not mind integration of Adblock Plus. Shhhhh! Once sites learn more and more people are blocking ads, they are going to move on to an even more insidious manner to deliver screaming, moving obnoxious hobbknobbery to our computers...
    --
    I'm sick of following my dreams. I'm just going to ask where they're goin' and hook up with 'em later.
  4. Re:How come? by jamesh · · Score: 2, Funny

    If we could tag posts, yours would be tagged 'youmustbenewhere'.

  5. As a MS executive who has nothing better to do... by Anonymous Coward · · Score: 2, Funny

    ... I'd like to say that that is a fantastic idea, and I'll ensure that we acquire Mozilla ASAP.

    Enjoy being beaten up by your fellow /.ers.

  6. Whew! by loopiv · · Score: 2, Funny

    Thank god I use Internet Explorer.

  7. Amazing coincidence by GlobalEcho · · Score: 4, Funny

    The browser can present to me a list of script functions and fragments, each with a "allow", "deny", or "remap" option. What an amazing coincidence! My grandmother, my boss and my brother's girlfriend were all wishing out loud for that very feature just yesterday! We'll all be secure in no time!
  8. Re:* Stops download of newest Firefox * by sticks_us · · Score: 2, Funny

    That does it, I'm switching to w3m

    (returns ten minutes later)

    Ahh...how relaxing...

    --
    "Beware of bugs in the above code; I have only proved it correct, not tried it." -- Donald Knuth