 |
 |
 |
 |
 |
Information about your favorite browser: news, articles and more.
Firefox Password Flaw Still Open?
Published March 10th, 2007 in Browser Security, Bugs and Issues, Exploits & Vulnerabilities, Firefox, Security
Is a flaw in the Firefox browser fixed or not? A security research claims that it’s not. Mozilla says it is. Last November security 
researcher Robert Chapin discovered a zero day flaw in Mozilla Firefox’s password manager. The flaw could potentially allow a maliciously crafted page to auto-fill a form with credentials intended for another site. Mozilla claimed that it fixed the flaw in its most recent Firefox 2.0.0.2 update. Chapin doesn’t quite agree.
Chapin has issued an advisory noting some 22 risks associated with the Mozilla Password manager and that in his estimation, less than 25 percent of the risk represented by these problems has been resolved in the release of version 2.0.0.2. A Mozilla spokesperson was not immediately available for comment. Firefox Password Flaw Still Open?
