IE and Firefox fake login flaw

Browsers, Firefox, Tech Blogs, Rights and Wrongs, Security, Blogging, Technology, Privacy November 23rd, 2006

The latest versions of both Firefox and Internet Explorer are vulnerable to an unpatched flaw that allows hackers to snaffle users’ login credentials via automated phishing attacks.

The information disclosure bug affects the password manager in Firefox 2.0 and its equivalent in IE7. Firefox’s Password Manager, for example, fails to properly check URLs before filling in saved user credentials into web forms.

 

Share This


Leave a comment Comment RSS


Similar posts

Previous: Vista’s EULA product activation worries
Next: Monarchy versus every other political system

4 Comments to “IE and Firefox fake login flaw”

  1. Dave | November 24th, 2006 at 2:16 pm

    This is why I haven’t upgraded yet,let them sort all the bugs out first then I’ll upgrade.

  2. carol | November 24th, 2006 at 4:26 pm

    It is the same for Firefox 1 and 2 and also IE.

  3. Dave | November 24th, 2006 at 4:56 pm

    When did this occur,because i had 5 critical updates 3 or 4 days ago.

  4. Dave | November 25th, 2006 at 8:27 am

    I’ve just got IE7 as an automatic update this morning and I’m quite impressed with it and also its fixed the problem I had with your comments page so I can see what I’m typing.

Leave a Comment

Close
E-mail It