Slashdot Mirror

← Back to Stories (view on slashdot.org)

Firefox Most Vulnerable Browser, Safari Close

Posted by CmdrTaco on from the say-what-now dept.

An anonymous reader writes "Cenzic released its report revealing the most prominent types of Web application vulnerabilities for the first half of 2009. The report identified over 3,100 total vulnerabilities, which is a 10 percent increase in Web application vulnerabilities compared to the second half of 2008. Among Web browsers, Mozilla Firefox had the largest percentage of Web vulnerabilities, followed by Apple Safari, whose browser showed a vast increase in exploits, due to vulnerabilities reported in the Safari iPhone browser." It seems a bit surprising to me that this study shows that only 15% of vulnerabilities are in IE.

12 of 369 comments (clear)

  1. Certified by rwv · · Score: 5, Funny

    It seems a bit surprising to me that this study shows that only 15% of vulnerabilities are in IE.

    There is an explanation for that.

    Cenzic Recognized as a Microsoft Certified Partner, Experiences Substantial Momentum in Q2

    1. Re:Certified by MiniMike · · Score: 4, Funny

      That makes sense, because if anyone had told me that Firefox had more vulnerabilities than all the other browsers I would think that they were certifiable...

  2. Re:Maybe he is at fault? by s1lverl0rd · · Score: 2, Funny

    Am I the only one who thinks that a MitM is a little far-fetched?

  3. Re:I wonder by gregmac · · Score: 2, Funny

    IE is the worst, even though not patched very often.

    maybe... s/even though/because it is/ ?

    --
    Speak before you think
  4. Anyone else notice the Chrome-coloured charts? by Chris+Daniel · · Score: 2, Funny

    Glossy, primary colours, circles ... reminds of the Chrome logo.

    --
    Don't blame me -- I voted for Roslin.
  5. Re:I wonder by Kratisto · · Score: 2, Funny

    No one said anything about RTFR; you're getting off-topic.

    --
    Conscience is the inner voice which warns us that someone may be looking.
  6. Re:I wonder by w0mprat · · Score: 5, Funny
    I don't even bother posting I use a form.

    -- Slashdot posting form --
    ...
    [ ] RTFA
    [ ] In soviet russia ____ YOU!
    [ ] Obligatory XKCD
    [ ] _____ you insensitive clod.
    [ ] Get off my lawn
    [x] I don't even bother posting I use a form.
    ...

    --
    After logging in slashdot still does not take you back to the page you were on. It's been that way for 20 years.
  7. Obama and Swine Flu by gcatullus · · Score: 2, Funny

    Well I actually looked at the pdf report. It starts off with "What do the swine flu and hackers have in common". That started to get a laugh, but then the executive summary says that web vulnerabilities are getting better because of Obama. How can anyone take this seriously??

  8. Microsoft beats all in security tests! by David+Gerard · · Score: 4, Funny

    Microsoft is reeling from the vicious and unwarranted slanders of security companies and the US government’s Computer Emergency Response Team that its Internet Explorer web browser has alleged “security holes” or is in any way less than the finest software known to mankind and excellent value for your money. "Cenzic proves it's Firefox! FIREFOX DID IT! Fuckers."

    The festering paedophiles of CERT have gone so outrageously far as to make the ludicrous claim that just viewing a malicious webpage in IE could leave your computer open to being hacked and turned into a Russian Mafia spam server. “We don’t know what could have triggered such vindictiveness,” sobbed Microsoft marketing marketer’s marketer Steve Ballmer. “Do they hate free enterprise that much?”

    There are things you can do to make your computing experience even more secure. Microsoft’s official suggestion — make sure your anti-virus software is up to date and using an entire CPU doing nothing much, click through five screens to run IE in “protected mode,” click through four screens to set zone security to “high,” click “JUST BLOODY DO IT WILL YOU” when the User Access Control asks if you really want to do this, enable automatic updates with the minor side-effect of installing Microsoft DRM on your system or Windows Genuine Advantage randomly turning your computer into a paperweight, and sacrifice a goat to Microsoft at midnight on a moonless night — is simple and straightforward. “It’s the quality you’re paying for.”

    On no account should you consider that there might be other web browsers out there, as researchers have demonstrated that all of them automatically download the cover of Virgin Killer. “I saw a report,” said marketing marketer John Curran of Microsoft Completely Enderlependent Analysts, Inc., “that another browser had more vulnerabilities than ours! People would be very foolish indeed to move from the latest IE to Netscape 4.01.”

    “These CERT wankers are Mactards and trolls,” said Guardian marketing marketer Jack Schofield. “They just want to take IE users out, brutally sodomise them, gas them in concentration camps and” [This comment has been removed by a Guardian moderator. Replies may also be deleted.]

    --
    http://rocknerd.co.uk
  9. Re:I wonder by RenderSeven · · Score: 2, Funny

    If Bing has less info on Cenzic, it *proves* they are secretly allied with Microsoft!

  10. Re:I wonder by eulernet · · Score: 4, Funny

    If we continue Cenzic's approach, we can prove that IE6 is the most secure browser, since there are no more patches for it.

  11. Re:I wonder by DarkAxi0m · · Score: 3, Funny

    you forgot space alignment factor and the dice roll.... *sigh*

    (number of browsers with vulnerability) x (damage possible if vulnerability is exploited) x (chance of actually exploiting the vulnerability) / (the alignment of the moon and mars) + 2d6.