surferdude
01-24-2008, 01:38 PM
January 23, 2008 (Computerworld) (http://www.computerworld.com/) -- Mozilla's head of security yesterday confirmed a bug in Firefox (http://www.computerworld.com/action/inform.do?command=search&searchTerms=Mozilla+Firefox) that could be used by attackers to scout out a system prior to mounting a more thorough assault.
The flaw, said Window Snyder (http://www.computerworld.com/action/inform.do?command=search&searchTerms=Window+Snyder), Mozilla Corp. (http://www.computerworld.com/action/inform.do?command=search&searchTerms=The+Mozilla+Corporation)'s chief security officer, is in the browser's chrome protocol, she said in response to reports of the vulnerability and the public posting (http://www.hiredhacker.com/2008/01/19/firefox-chrome-url-handling-directory-traversal/) of a proof-of-concept exploit. "Chrome" is the Firefox term for its user interface.
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9058560&intsrc=hm_list
:eek::hi:
The flaw, said Window Snyder (http://www.computerworld.com/action/inform.do?command=search&searchTerms=Window+Snyder), Mozilla Corp. (http://www.computerworld.com/action/inform.do?command=search&searchTerms=The+Mozilla+Corporation)'s chief security officer, is in the browser's chrome protocol, she said in response to reports of the vulnerability and the public posting (http://www.hiredhacker.com/2008/01/19/firefox-chrome-url-handling-directory-traversal/) of a proof-of-concept exploit. "Chrome" is the Firefox term for its user interface.
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9058560&intsrc=hm_list
:eek::hi: