Password Vulnerability In Firefox 2.0.0.5

Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

Password Vulnerability In Firefox 2.0.0.5 176

Posted by CmdrTaco on Monday July 23, 2007 @11:18AM from the waiting-for-the-patch-boys dept.

Paris The Pirate writes "According to a message posted over the weekend on the Full-Disclosure mailing list, the latest version of Firefox, 2.0.0.5, contains a password management vulnerability that can allow malicious Web sites to steal user passwords. If you have JavaScript enabled and allow Firefox to remember your passwords, you are at risk from this flaw."

This discussion has been archived. No new comments can be posted.

Password Vulnerability In Firefox 2.0.0.5

Search 176 Comments Log In/Create an Account

Comments Filter:

Is this OS independent? (Score:4, Interesting)

by sexybomber ( 740588 ) writes: on Monday July 23, 2007 @11:20AM (#19956533)

I haven't RTFA (after all, this is Slashdot), but are all OSes equally vulnerable?

Share
twitter facebook
Safari (Score:3, Interesting)

by ens0niq ( 883308 ) writes: on Monday July 23, 2007 @12:18PM (#19957441)

Safari also vulnerable... [marc.info]

Share
twitter facebook
Re:Safari (Score:4, Interesting)

by pherthyl ( 445706 ) writes: on Monday July 23, 2007 @12:51PM (#19957961)

Interestingly enough, Konqueror/KHTML (on which Safari is based) is not vulnerable (just tried the demo). It does password saving as well, but apparently have found a way to avoid the problem.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Password Vulnerability In Firefox 2.0.0.5 176

Password Vulnerability In Firefox 2.0.0.5 More Login

Password Vulnerability In Firefox 2.0.0.5

Is this OS independent? (Score:4, Interesting)

Safari (Score:3, Interesting)

Re:Safari (Score:4, Interesting)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot