 |
 |
| ActiveWin | Anonymous | Create a User | Reviews | News | Forums | Advertise | VBA in Excel | Users Online: 0 |
|
|
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
Active Network |
|
ActiveMac |
|
ActiveWin |
|
ActiveXbox |
|
DirectX |
|
Downloads |
|
FAQs |
|
Interviews |
|
MS Games & Hardware |
|
Reviews |
|
Rocky Bytes |
|
Support Center |
|
TopTechTips |
|
Windows 2000 |
|
Windows Me |
|
Windows Server 2003 |
|
Windows Vista |
|
Windows XP |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
Apple/Mac |
|
Xbox/Xbox 360 |
|
News Search |
|
XML/RSS Newsfeeds |
|
Pocket PC Site |
|
|
|
|
|
|
|
FAQ's |
|
Windows Vista |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows Server 2003 |
|
Windows XP |
|
Windows 7 |
|
Windows 8 |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox 360 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
Latest Reviews |
|
Xbox/Games |
|
Fable 2 |
|
|
|
Applications |
|
Windows Server 2008 R2 |
|
Windows 7 |
|
Adobe CS5 Master Collection |
|
|
|
Hardware |
|
Microsoft Express Mouse |
|
|
|
|
|
|
|
Latest Interviews |
|
Mike Swanson |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Advertise |
|
Affiliates |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
 |
Mozilla admits Firefox is flawed just like IE | |
|
||
| Time: 00:09 EST/05:09 GMT | News Source: WinBeta | Posted By: Kenneth van Surksum | ||
|
In a public mea culpa, Mozilla Corp.'s chief security officer acknowledged today that Firefox includes the same flaw that the company called a "critical vulnerability" in Internet Explorer during a two-week ruckus over responsibility for a Windows zero-day bug. "Over the weekend, we learned about a new scenario that identifies ways that Firefox could also be used as the entry point," said Window Snyder of Mozilla. "While browsing with Firefox, a specially crafted URL could potentially be used to send bad data to another application. "We thought this was just a problem with IE," Synder continued. "It turns out, it is a problem with Firefox as well." |
||
|
Read Only Comments Return to News |
Displaying Comments 1 through 7 of 7 |
This is an archived static copy of ActiveWin.com. |
| #1 By 28801 (65.90.202.10) at Wednesday, July 25, 2007 06:22:55 AM |
|
Firefox isn't perfect! Alert the media!
|
| #2 By 32132 (142.32.208.232) at Wednesday, July 25, 2007 11:04:10 AM |
| Firefox lied ... ho hum ... what else is new. |
| #3 By 15406 (216.191.227.68) at Wednesday, July 25, 2007 11:56:39 AM |
| The Mozilla team admits they were wrong in that Firefox suffers from the same flaw as IE. MS has not yet admitted that IE suffers from this flaw. Who is being honest and upfront again? |
| #4 By 32132 (142.32.208.232) at Wednesday, July 25, 2007 12:02:50 PM |
|
"...other security experts said it was Firefox's fault."
And they are right. It isn't Microsofts job to validate data passed through a handler registered by another application. It is up to the application to filter out data the app considers bad. |
| #5 By 3653 (68.52.143.149) at Wednesday, July 25, 2007 05:55:44 PM |
| oh, lets cut mozilla some slack. they only badmouthed, lied, sought to distract, and otherwise pointed the spotlight elsewhere. |
| #6 By 37 (68.190.114.234) at Wednesday, July 25, 2007 06:25:43 PM |
| FF and Safari FTW! |
| #7 By 2459 (69.22.113.215) at Wednesday, July 25, 2007 07:08:07 PM |
|
Mozilla still isn't being honest. There is no flaw in IE. IE isn't supposed to touch the input to the protocol handler (and rightfully doesn't). That's not flawed behavior, it's correct behavior. Firefox, and any other application that registers to handle a protocol, is responsible for checking the input to that protocol. This post was edited by n4cer on Wednesday, July 25, 2007 at 19:10. |
