Firefox hands out cookies from strangers

by admin February 15, 2007 at 9:39 am
0 Comment

Be careful, kids

Firefox suffers from a flaw that allows attackers to manipulate the authentication cookies of virtually any website, a vulnerability Bugzilla has deemed severe. It’s the second major security lapse for the open-source browser in as many days.

The defect, which stems from the way Firefox writes to the “location.hostname” property of the document object model, can be exploited by a specially doctored script that sets variables that normally wouldn’t be accepted when parsing a regular URL, according to researcher Michal Zalewski, who uncovered Monday’s vulnerability as well.

Read more: The Register

Related Content
Realme C15 Launching in India on August 18: Everything We Know So Far
Facebook’s CEO to meet PM Modi today
Firefox 4 Beta 1: A Visual Tour
Now, access Facebook on mobile devices for free
more news from the blog
Mac OS X 10.5.6 – this time it’s real
AOL IM worm roots around Windows
Private Browsing 1.0 Pre-Release 1
TokBox Voice and Video Calls 1.0.2
netKar PRO 1.0.3
whitoken ipod touch 3.0 theme
mRemote 1.43
ColorSniffer 1.0
tinychat
eMule 0.50a
HDDlife 3.1.167
Symantec and McAfee 'should have prepared better' for Vista
Does Google wants to store the world?
ATSurround Processor 1.01
Apple’s iDisk finally comes to the iPod, iPhone
YouTube Downloader 2.6.2
Microsoft becomes official Apache sponsor
XanaNews 1.18.1.6
Legion 1.0
Microsoft Codename Max 1.0.60222.3
SAM Cast Pro 2016.6
imeem signs Universal for ad-based free music
IE8 Beta 2 has a surprise for Windows XP SP3 users
DVD43 Plug-in 1.0.0.4
StartEd Lite 5.3.0.2
Obsidian 1.04
PsyncX – Mac OS X Backup Utility 2.2.1
Office Key Remover 1.0.0.2
Apple IPhone Update Fixes Unspecified Bugs
RobotGet 1.1
AudioShell 1.3.5
ArcConvert 0.58
Google Talk comes to the iPhone, iPod Touch