A seven year old vulnerability has been re-introduced in Mozilla and Firefox, which can be exploited by malicious people to spoof the contents of web sites.
The vulnerability, rated ‘Moderately critical’ by Danish security firm Secunia, has been confirmed in Firefox 1.0.4 and Mozilla 1.7.8 - other versions may also be affected.
Secunia has warned users not to browse untrusted web sites while browsing trusted sites. Secunia has also constructed a test, which can be used to check if your browser is affected.
"The flaw means that if you are viewing a trusted site in one window (PayPal or your bank) and open a site belonging to a spoofer in another window, the spoofer can insert code in the window showing the trusted site," explains a moderator on Mozilla’s forum.
"To protect yourself, close all other windows/tabs before accessing a site where you routinely put in a secure password (your bank or PayPal account), or your bank or credit card details (e.g. Amazon), or other sensitive data".
» Adobe and Mozilla to Open Source Flash Player Scripting Engine
» Firefox Browser for Web 2.0 Age
» Porn Sites Exploit New Internet Explorer Flaw - Patch Due Oct 10
» Mozilla Firefox v2.0 Alpha 1
» FireFox Tweak Guide
» Dell Adds PayPal as Payment Option on Dell.com
» Mozilla Fix for Firefox and Mozilla IDN Buffer Overflow Security Issue
» Mozilla Firefox 1.0.5 Released
» Microsoft & Secunia Security Advisories for IE Com Flaw
» Opera 8.01Has Dialog Origin Spoofing Fix
» Pop-up Vulnerability in Browsers - Opera 8.01 Has Fix *
» Firefox & Mozilla Updates Available - Security Fixes
» Latest Mozilla Releases Fix 10 Security Flaws
» Security Hole Found In Mozilla Browser
» Internet Explorer 6 Download Spoof Vulnerability
Loading ...
del.icio.us
Digg
Furl
Netscape
Yahoo! My Web
StumbleUpon
Google Bookmarks
Technorati
BlinkList
Newsvine
ma.gnolia
reddit
Windows Live
Tailrank
