Author Topic: Hackers claim zero-day flaw in Firefox (Read 1106 times)

Clive · « **on:** October 02, 2006, 09:07 »

SAN DIEGO--The open-source Firefox Web browser is critically flawed in the way it handles JavaScript, two hackers said Saturday afternoon.

http://news.com.com/2100-1002_3-6121608.html

Simon · « **Reply #1 on:** October 02, 2006, 09:39 »

:argh: But at least the Mozilla organisation will be actively looking for a solution. Firefox is still a million times more secure than IE, and Java script has always been a slightly contentious issue. To fall victim to this flaw, the user would have to visit a 'rigged' website, which probably isn't something an average surfer would simply stumble upon.

sam · « **Reply #2 on:** October 02, 2006, 11:25 »

yes indeed.

chorleydave · « **Reply #3 on:** October 02, 2006, 13:29 »

I know this might sound stupid, but what happens if you turn off Javascript?

Simon · « **Reply #4 on:** October 02, 2006, 16:18 »

Quote from: "chorleydave"

I know this might sound stupid, but what happens if you turn off Javascript?

You won't be able to use websites (or parts of websites) which use it. Javascript is actually quite common, so to turn it off might be found to be limiting, but there is a mod for Firefox called NoScript, which enables you to customise which scripts are allowed in your browser, by a 'whitelist' method. Click link for more details.

Reno · « **Reply #5 on:** October 04, 2006, 21:07 »

Those "hackers" were frauds.

Heres the original article with the vid of the two "hackers".
http://news.com.com/Hackers+claim+zero-day+flaw+in+Firefox/2100-1002_3-6121608.html

Heres the ones exposing them.
http://news.com.com/Hacker+backpedals+on+Firefox+zero-day/2100-7349_3-6122317.html

Simon · « **Reply #6 on:** October 04, 2006, 22:13 »

Smug grin.