Software and Technology    Subscribe to RSS
Saturday, September 10 2005
Workaround for Firefox Vulnerability

Mozilla offers temporary fix for Firefox flaw. The patch protects against exploitation of a serious flaw by disabling the browser feature that contains the vulnerability. [CNET News.com]

If you run Firefox, which many of the visitors here do, you need to protect yourself against this vulernability in the way Firefox handles International Domain Names. This isn't the first time IDNs have been the root of a security problem (they still have a critical issue in the ability of nefarious agents to use IDNs for phishing purposes). Firefox is no longer a fringe browser, and has enough of a user-base that it is a likely target for criminal hackers.

The CNET article above appears to give a bogus link. Instead go to the source directly, at https://addons.mozilla.org/messages/307259.html.

   
Comments  Permalink

Reader Comments

Add Comment

Name *:

Email Address:

(your email address is not displayed)
Website:

Comment *:



About the Author
Dennis Forbes Dennis Forbes is a Toronto-based software architect. While focused primarily on the .NET and SQL Server worlds, Dennis frequently ventures outside of this comfort zone into game development and image processing. He has been published in several industry magazines, has been quoted in the Wall Street Journal and has been interviewed by NPR.

He is a vice president and lead software architect at an innovative New York City hedge fund back-office services firm.

Dennis has been working on solutions for the financial, telecommunications, and power generation markets for over 15 years.


Recent Entries
Apr 09 - Moonbat Lives!
Mar 20 - iPad v3
Mar 08 - Specs Rule
Mar 07 - My First Apple Purchase Ever
Mar 05 - Microsoft's Mistake
Jan 03 - What About Android Deactivations?
Dec 28 - Sorry WP7, Apple Already Makes a Great iPhone
Dec 01 - The Carrier IQ Story: Everyone Is An Idiot
Nov 10 - Flash (SWF) Is Dead
Oct 25 - Tenom And the Intelligent Home
Oct 24 - The Smartphone War Is Won -- Users Victorious
Oct 12 - Ex Post Facto Rationalizations and the iPhone
Oct 07 - More on the Kindle Fire -- Gingerbread 2.3.4+
Oct 07 - The Canonization of Steve Jobs
Sep 29 - The Kindle Fire and Android
Sep 26 - You Are The Product. Get Over It.
Sep 25 - The iPhone's Incredible Halo-Effect
Aug 24 - Seriously, Samsung: Stop Copying Apple
Aug 24 - The Vanity Fair / Windows XP Wallpaper House Listing
Aug 23 - GUIDs In Your Database


The Feed Bag
Apr 10 - Android Design
Apr 10 - PHP: a fractal of bad design
Oct 27 - Using node.js in an ASP.NET application
Oct 24 - Parenthood
Aug 29 - Best SSDs For The Money: August 2011
Jul 24 - The Cost of Patent Trolls
Jul 23 - Cinemagraphs
Jul 20 - Netflix Describes the Chaos Monkeys
Jul 19 - Apple Prints Their Own Money
Jul 08 - Good Database-Related Blog
Jun 23 - tewdew software blog
Jun 13 - Windows 8 Horrifies Devs
May 29 - nvidia demos Kal-El
May 13 - The Problem with HTML5 Audio
May 12 - Google's Unsavory Bullying

 

Dennis Forbes