Firefox Bugged Again

Spanish Security firm Secunia, has found a seven year old flaw - 'frame injection' vulnerability, in Mozilla's Firefox browser which allows attackers to place malicious content on trusted websites.

The warning reveals a flaw in the way the browser handles frames. The application does not verify if a page, displayed in different frames on a particular website originates from the same site. This flaw could be used by a hacker to insert malicious content in one of the frames of a trusted website.

The security company pointed out that Firefox 1.x, Mozilla 1.7.x and Camino 0.x versions of the application were vulnerable to the flaw and has rated it as 'moderately critical'.

According to a posting by a 'user support moderator' on the Mozilla's online forum, a user viewing a trusted site on one window and has open on another window a malicious website that attacks this vulnerability, can enable the attacker to steal his/her information.

To ensure protection, the moderator advices users to close all windows or tabs before accessing sites where the user might need to enter a secure password, bank or credit card details, or any other sensitive data.

Comments

Post a Comment

Popular posts from this blog

Convert Your Hotmail to 250 MB

Image
Follow these Simple Steps and your Hotmail Account size will increase 1. Go To Options --> Profile 2. Change: Country --> United States Zip Code -->33332 3. Update your account and Sign Out 4. Click on this link http://memberservices.passport.net/memberservice.srf? 5. Click On Close My Account You will have to Sign In again and your account will be closed 6. Close your Web Browser 7. Start your Browser again after a minute 8. Go to Hotmail and sign in. 9. You will be taken through a reactivation process 10. Follow the process 11. That’s IT . Enjoy! Your Account is now 25 MB. Microsoft says it takes 30 Days for your account to be converted to 250 MB but that’s done within a week or so. Please post your replies Note: There is a risk of loosing all your emails and contacts. Do this at your own risk.Personally I havent lost any o
Read more

I got Gmail Invites

I have got a lot of gmail invites (20 to be precise) with me if any one who wants it should just leave a comment and i will send the invite. Invites will be given on first come first serve basis. Kindly note that Gmail Invites genrally reach your Bulkmail instead of the Inbox, so dont forget to check there.
Read more

Harry Potter 6 - The Half-Blood Prince

Release Date: July 16, 2005 The following is a list of facts that we know about book six, Harry Potter and the Half-Blood Prince. From JKRowling.com: - The link between Chamber of Secrets and Half-Blood Prince relates to a discovery Harry made in 'Chamber' that foreshadows something that he finds out in 'Prince'. - Tom Riddle is not the Half Blood Prince (he is Voldemort). - Arthur Weasley is not the Minister of Magic. - Crucial information in The Half-Blood Prince was originally planned to be placed in Chamber of Secrets, the second book. - The HBP (half-blood prince) is not Harry or Voldemort. - There will not be two chapters in book six titled "Lupin's Papers" and "The Lovegoods in Court." - An excerpt from HBP: "He looked rather like an old lion. There were streaks of grey in his mane of tawny hair and his bushy eyebrows; he had keen yellowish eyes behind a pair of wire-rimmed spectacles and a certain rangy, loping grace even though he w
Read more