[G3]-Technews
[G3]-TechNews : Home| RSS | Atom | MSN | WAP

 Stickies:
Article: Step-by-Step Guide: How to set up a VPN
Article: Download: Microsoft Monad (Beta)
Article: Building a 64-Bit Multimedia Workstation
Article: Coming Soon to Windows: The Microsoft Shell (MSH)
Article: How to Reset Win NT / 2000 / XP Administrator Password
Article: The Technology Behind Dual Core CPUs
Article: How-To: Wireless Network Security
Article: Article: PCI Express - technology backgrounder
Article: Tutorial: Access Hidden Files on Your iPod
Article: Troubleshooting drivers with XP's hidden Driver Verifier Manager
Article: How to Make a 5 in 1 Network Cable
Article: Comparison - Blu-ray & HD DVD
Article: Beginners Guides Linux : Part 1 | Part 2 | Part 3
Article: How To Crack WEP (Wired Equivalent Privacy)
Article: Email Addresses Spoofing.
Link: Free PHP ebook
Link: FREE ASP.NET books and eLearning course
Link: Free registration code for Opera 8.
Invitations: Gazzag (Here) | Yahoo! 360 (Here)  | Orkut (Here)

Multiple Mozilla - Firefox flaws expose personal data
Contributed by: G3nu1n3, at 4/18/2005 11:49:00 PM.

Multiple vulnerabilities that could allow an attacker to install malicious code or steal personal data have been discovered in the Mozilla Suite and the Firefox open source browser. Details of the nine vulnerabilities were published on Mozilla's security Web site over the weekend. The FrSIRT advisory said: "When a popup is blocked the user is given the ability to open that one popup… If the popup URL were java script: selecting ‘Show java script:...' from the infobar or popup blocking status bar icon menus would run the javascript with elevated privileges, which could be used to install malicious software".

Another of the Firefox flaws can be exploited when a user visits a Web page that requires a plug-in that has not already been installed. The FrSIRT advisory claims that if the browser's Plugin Finder Service is used to automatically find an appropriate plugin, the ‘manual install' function can be used to "launch arbitrary code capable of stealing local data or installing malicious code". All versions of Mozilla Suite prior to version 1.7.7 and all versions of Firefox prior to 1.0.3 are vulnerable.

Visit: Mozilla Security


Important:
To Read MOST UPDATED News Items browse to HOME page.

0 Comments:

Post a Comment

<< Home



[G3]-TechNews : Home| RSS | Atom | MSN | WAP


Archives :

- Monthly Archives :


- Post Count: 1,783 before June 1, 2005. (Since: October 26, 2004)