Submission + - Holes in Firefox password manager (heise-security.co.uk)

Submitted by

juct

on Friday July 20, 2007 @06:22AM

juct writes: "Although the Mozilla developers have fixed a known hole in the password manager of Firefox & Co, a door remains open for exploitation. According to an article on heise Security attackers can still use JavaScript to steal passwords. However, the real problem might not be Firefox' password manager. If users can set up their own pages containing script code on a server, the JavaScript security model breaks. Heise Security demonstrates the possible password theft in a demo."

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Holes in Firefox password manager

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Thrashing is just virtual crashing.

Submission + - Holes in Firefox password manager (heise-security.co.uk)

Holes in Firefox password manager More Login

Holes in Firefox password manager

Slashdot Top Deals

Slashdot