"Extremely Critical" Security Hole in Firefox

[Duke]

We've discussed this topic a few times in various parts of this forum as to the rising popularity of Mozilla Firefox. Many people prefer this browser as it's far less vulnerable to attacks as is Internet Explorer. It seems with the rising popularity of Firefox, it may not be as impervious to attack as once thought.

Quoted from Techworld.com:

"Firefox has unpatched "extremely critical" security holes and exploit code is already circulating on the Net, security researchers have warned. The two unpatched flaws in the Mozilla browser could allow an attacker to take control of your system."

Click here for the rest of the article.

[Paul_KY]

Right, Duke. And the more popular they become, the more, "security loops" they'll have exploited by the bad guys. It's all about the numbers.

"The exploit, discovered by Paul of Greyhats Security Group and Michael "mikx" Krax, makes use of two separate vulnerabilities. An attacker could create a malicious page using frames and a JavaScript history flaw to make software installations appear to be coming from a "trusted" site. By default, Firefox allows software installations from update.mozilla.org and addons.mozilla.org, but users can add their own sites to this whitelist."

No way I going to carry on, online, without Javascript enabled. What a pain in the a** that would be.

[Duke]

Right, Duke. And the more popular they become, the more, "security loops" they'll have exploited by the bad guys. It's all about the numbers.

I know we've touched on this a few times before, but it will be funny to hear all the Firefox Rulez0rz Users become turncoats when they no longer have full use of their own PC. As Firefox's popularity grows, so will the instances of cracks, hax, spyware, adware, and virus', you can count on it.