2 Black Hat hackers have revealed a zero-day flaw in Firefox and it's related to its Javascript handling. By releasing this flaw instead of taking their findings to Mozilla, these two hackers have open flood gates for crackers to exploit unwitting user's computers as Botnets. It shows how
much these two men don’t know about common sense or proper action in dealing with real problems. Better update your firewalls, antiviruses and all related security software. I'm just waiting for the day when we can all have a truly secure browser.Zero Day Bug in Firefox Web browser source :
The open-source Firefox Web browser is critically flawed in the way it handles JavaScript, two hackers said Saturday afternoon.An attacker could commandeer a computer running the browser simply by crafting a Web page that contains some malicious JavaScript code, Mischa Spiegelmock and Andrew Wbeelsoi said in a presentation at the ToorCon hacker conference here. The flaw affects Firefox on Windows, Apple Computer's Mac OS X and Linux, they said.'Internet Explorer, everybody knows, is not very secure. But Firefox is also fairly insecure,' said Spiegelmock, who in everyday life works at blog company SixApart. He detailed the flaw, showing a slide that displayed key parts of the attack code needed to exploit it.
Comment Preview