Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
Security

+ - Critical flaw in current Firefox discovered

Submitted by HuckleCom
HuckleCom (690630) writes "F-Secure has a blog post regarding the latest version of Firefox and a vulnerability that allows malicious javascript code to manipulate any of your cookies.

From the Blog: "There's a new bug reported in the way Firefox handles writes to the 'location.hostname' DOM property. The vulnerability could potentially allow a malicious website to manipulate the authentication cookies for a third-party site."

From what I can recollect, this seems to be the first vulnerability discovered in the actual current version of Firefox — at least for a good long time."

The first time, it's a KLUDGE! The second, a trick. Later, it's a well-established technique! -- Mike Broido, Intermetrics

Working...