You are not logged in.
- Topics: Active | Unanswered
#1 2008-06-20 06:05:25
- SuperMAG
- Member
- Registered: 2008-05-10
- Posts: 707
Firefox and 10 million open to exploit
http://blogs.zdnet.com/security/?p=1288
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code, permitting the attacker to completely take over the vulnerable process, potentially allowing the machine running the process to be completely controlled by the attacker. TippingPoint researchers continue to see these types of “user-interaction required ” browser-based vulnerabilities - such as clicking on a link in email or inadvertently visiting a malicious web page.
This is Terrible.
Offline
#2 2008-06-20 07:17:54
- Felix
- Member
- Registered: 2008-05-13
- Posts: 352
Re: Firefox and 10 million open to exploit
So what?
There are always Security Holes... And there will always be security holes 
Internet Explorers first version was released in 1995, 13 years ago, today it is called IE8 and they are still having serious problems with their software.
So I don't see anything unsual about this bug. Such bugs aren't that uncommon, just because of the FF3 release and their "world record" it is being pushed now.
Offline
#3 2008-06-20 07:21:41
- elbekko
- Former Developer
- From: Leuven, Belgium
- Registered: 2008-04-30
- Posts: 1,131
- Website
Re: Firefox and 10 million open to exploit
It isn't terrible, it's good. I bet a fix will be released within a day, perhaps two, thus showing that the Mozilla team actually cares (unlike the majority of other browsers).
Ben
SVN repository for my extensions - The thread
Quickmarks 0.5
“Question: How does a large software project get to be one year late? Answer: One day at a time!” - Fred Brooks
Offline
#4 2008-06-20 07:39:05
- SuperMAG
- Member
- Registered: 2008-05-10
- Posts: 707
Re: Firefox and 10 million open to exploit
i am not worried that they will update it in days or two, what happens if were attacked now
i like firefox very much.
Offline
#5 2008-06-20 07:41:35
- Felix
- Member
- Registered: 2008-05-13
- Posts: 352
Re: Firefox and 10 million open to exploit
Just don't click every link you get see.
That's it.
Check the targets.
Dont get fooled by JavaScript changes of the status bar.
etc.
Offline
#6 2008-06-20 07:43:31
- elbekko
- Former Developer
- From: Leuven, Belgium
- Registered: 2008-04-30
- Posts: 1,131
- Website
Re: Firefox and 10 million open to exploit
Do what you should always do: browse safely.
Ben
SVN repository for my extensions - The thread
Quickmarks 0.5
“Question: How does a large software project get to be one year late? Answer: One day at a time!” - Fred Brooks
Offline
#7 2008-06-20 07:45:03
- SuperMAG
- Member
- Registered: 2008-05-10
- Posts: 707
Re: Firefox and 10 million open to exploit
yea well i got a strong antivirus and spyware too so no much worries
Last edited by SuperMAG (2008-06-20 07:45:37)
Offline
#8 2008-06-20 07:54:51
- Felix
- Member
- Registered: 2008-05-13
- Posts: 352
Re: Firefox and 10 million open to exploit
Neither of them will protect you before injected code.
Tho they will help you as soon as the injected code gets active and starting to work
Offline
#9 2008-06-20 07:57:38
- demetris
- Member
- Registered: 2008-05-13
- Posts: 19
- Website
Re: Firefox and 10 million open to exploit
[...] Dont get fooled by JavaScript changes of the status bar. etc.
In a default Firefox installation scripts are not allowed to change the status bar: :-)
BTW, Firefox 2.x is also affected by this issue. So, practically, all Firefox installations are affected, not only 10 million.
Offline
#10 2008-06-20 09:04:31
- liquidat0r
- Member
- From: London, England
- Registered: 2008-05-22
- Posts: 418
- Website
Re: Firefox and 10 million open to exploit
what happens if (I) were attacked now
Well, I won't give up hope just yet. Who knows, it might happen.
Offline
#11 2008-06-20 19:15:22
- sirena
- Member
- From: AU
- Registered: 2008-05-10
- Posts: 172
Re: Firefox and 10 million open to exploit
It isn't terrible, it's good. I bet a fix will be released within a day, perhaps two, thus showing that the Mozilla team actually cares (unlike the majority of other browsers).
What a dumb comment. Security flaws and sloppy insecure coding are good just because the buggy code in question comes out of Mozilla.org? I don't think so.
The Mozilla track record is not exceptional in terms of responsively patching security flaws, BTW. MS is good too, and the Opera team is even better. Apple is of course the least responsive of the bunch.
Offline
#12 2008-06-20 19:31:12
- elbekko
- Former Developer
- From: Leuven, Belgium
- Registered: 2008-04-30
- Posts: 1,131
- Website
Re: Firefox and 10 million open to exploit
And that just shows what an idiot you are 
*Every* piece of software ever written will have flaws, the larger the more flaws. The fact that they're actively being found IS A GOOD THING.
Ben
SVN repository for my extensions - The thread
Quickmarks 0.5
“Question: How does a large software project get to be one year late? Answer: One day at a time!” - Fred Brooks
Offline
#13 2008-06-20 19:54:33
- Reines
- Lead developer
- From: Scotland
- Registered: 2008-05-11
- Posts: 3,165
- Website
Re: Firefox and 10 million open to exploit
Kinda odd that they reported it right at the release rather than while it was in beta or RC.
Offline
#14 2008-06-20 19:59:19
- Utchin
- Member
- Registered: 2008-05-09
- Posts: 201
Re: Firefox and 10 million open to exploit
yea well i got a strong antivirus and spyware too so no much worries
To be honest you don't even need antivirus if your sensible... You can go years without getting viruses by playing it safe.
Offline
#15 2008-06-20 20:05:06
- Connor
- Former Developer
- Registered: 2008-04-27
- Posts: 1,127
Re: Firefox and 10 million open to exploit
SuperMAG wrote:yea well i got a strong antivirus and spyware too so no much worries
To be honest you don't even need antivirus if your sensible... You can go years without getting viruses by playing it safe.
Are you saying SuperMAG is sensible?
Offline
#16 2008-06-20 20:37:43
- Felix
- Member
- Registered: 2008-05-13
- Posts: 352
Re: Firefox and 10 million open to exploit
Kinda odd that they reported it right at the release rather than while it was in beta or RC.
Well, it happened on purpose.
Bugs or security holes during a beta or RC are common and will be fixed.
But that shortly after a final release it will be quite a big rumour... Like you can "enjoy" it now.
Offline
#18 2008-06-21 03:00:00
- SuperMAG
- Member
- Registered: 2008-05-10
- Posts: 707
Re: Firefox and 10 million open to exploit
no i installed them for FUN ,, HAHAHAHAHAH
you guys crack me some times.
Offline
#19 2008-06-21 14:22:27
- h2o
- Member
- From: Australia
- Registered: 2008-06-21
- Posts: 6
Re: Firefox and 10 million open to exploit
i am not worried that they will update it in days or two, what happens if were attacked now
i like firefox very much.
I think this sort of thing is just something we have to live with. If you r that worried about it the best thing to do would be to disconnect from the net (or not visit "those" sites).
Last edited by h2o (2008-06-21 14:25:14)
Offline
#20 2008-06-22 04:24:39
- SuperMAG
- Member
- Registered: 2008-05-10
- Posts: 707
Re: Firefox and 10 million open to exploit
i am not that worried, i just dont want to format my comp again,
i am not worried at all now so guys stop bumping
Offline
#21 2008-06-22 11:15:55
- Hemen
- Member
- Registered: 2008-05-14
- Posts: 110
Re: Firefox and 10 million open to exploit
Good news. Now the FireFox team has problems, i hope people stop using Firefox 
Just kidding 
RIP 2008-2008
Reborn in 2010
Offline