0-day vulnerability in Firefox
Larry Dignan wrote in his blog about Firefox vulnerability that allows to collect session information, including session cookies and session history. Firefox is not vulnerable by default but via addons.
This means that Firefox can leak information which allows attacker to load any javascript file on a machine.
List of add-ons
is quite long so most of Firefox users might have one or more of those.
Mozilla security chief Window Snyder said that this will be corrected in 2.0.0.12
version which should be released soon.
Other links related to issue:
Link 1
Link 2
Labels: browsers, firefox, vulnerabilities
posted by Shaba @ 7:42 AM
0 Comments
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home