firefox vulnerability

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

War of words over alleged Firefox vulnerability

War of words over alleged Firefox vulnerabilityInteresting...I don't know, but I suspect...I suspect the Mozilla guy is right this time. Since the just-fixed vulnerability dealt with exactly this issue, I find it hard to believe that the team did not test this very thing. I am betting that...

Tags: Web browsers, SECURITY, Ryan, vulnerability, Mozilla Firefox, Firefox vulnerability

Discussion threads 2008-02-11

Additional Resources

Exploit published for critical IE 7 zero-day flaw

Do you mean:"The vulnerability was confirmed on fully patched Windows XP SP3 systems with Internet Explorer 6 and [b]7[/b]."Also how effective is the exploit with Protected Mode and limited user account usage? I'd like to see more information on how these two mitigation techniques work against exploits. I suspect the...

Tags: Web browsers, EXPLORER, Microsoft Security Essentials, Microsoft Internet Explorer, critical IE 7 zero-day flaw, IE 7 zero-day flaw, Microsoft Internet Explorer 7, zero-day bug, exploit

Discussion threads 2009-11-23

Microsoft finds security hole in Google Chrome Frame

HAHA! Way to go Microsoft! They basically just told Google to suck it! The best part is they were right the whole time. Yet people blindly defended Google. It would seem Google has more software issues than anyone else.RE: Microsoft finds security hole in Google Chrome FrameI'm not...

Tags: Web browsers, security, Google Inc., Microsoft Corp., attack surface, Google Chrome

Discussion threads 2009-11-19

Mozilla locks out rogue Firefox add-ons

Firefox has conquered IEIt is evident that Firefox free has conquered IE, plus the fact the majority of sites work regardless of browser.The days of this old bait & switch from MS are over.But I thought the whole point behind "open source"......was to allow ANYONE to put code in their...

Tags: Web browsers, Microsoft Internet Explorer, Mozilla Firefox, Web browser, open source, Mozilla Corp.

Discussion threads 2009-11-18

Major online ad site hacked, serving up exploit cocktail

One more reason to use FirefoxUse Firefox with AdBlock Plus and a simple filter of *media-servers.net* and the problem is solved.I am not sure that they are "major" as I did not have a filter for them.AgreedYet, I bet the web hosts will STILL complain about it. RE: Major online...

Tags: Cyberthreats, Spyware, adware & malware, Viruses and worms, Confession, online advertising, Microsoft Windows, Ryan

Discussion threads 2009-11-10

Counting vulnerabilities is pointless

Suddenly it doesn't matter any more? Vulnerability count is an indication of software qualityIt goes directly to the process the vendor went through to root out vulnerabilities before shipping. At least if you compare products with the same general purpose and which receives the same amount of scrutiny.Time to fix...

Tags: Web browsers, Cyberthreats, Spyware, adware & malware, SECURITY, Mozilla Firefox, vulnerability, Microsoft Internet Explorer, malware, risk period

Discussion threads 2009-11-09

Counting vulnerabilities is pointless

Application security vendor Cenzic released a report today highlighting Mozilla Firefox as the most vulnerable web browser based on vulnerability count. Problem is, counting vulnerabilities is pointless. In fact, it's worse than pointless, it can lead us to draw false conclusions. by Adrian Kingsley-Hughes

Tags: Vulnerability, Security, Adrian Kingsley-Hughes

Blog posts 2009-11-09

News to know: Apple; Alex; Microhoo; Droid; FCC

Here are today's notable headlines. You can get News To Know via email alert and RSS daily. For continuous updates see BNET's around-the-Web tech coverage. Sam Diaz: Another strong quarter for Apple; credit strong iPhone, Mac sales Jason D. O'Grady: Apple announces most profitable...

Tags: FCC, Google Inc., Larry Dignan, Advertisement, Information Technology, Dana Blankenhorn, Mary Jo Foley, Apple Inc., Microsoft Corp., Adrian Kingsley-Hughes, Sam Diaz, Microsoft Windows 7, Microsoft Windows, E-books, Federal Government, Service-Oriented Architecture (SOA), Operating Systems, Software, Personal Technology, Government, Web Services, Enterprise Software

Blog posts 2009-10-20

Mozilla blocks dangerous MS .NET Firefox add-on

RE: Mozilla blocks dangerous MS .NET Firefox add-onIf it had to be blacklisted or not I really don't care now. Implementing code without end user permission is enough reason. We all know MS ways so I am glad Mozilla people used this way and hope they keep doing it in...

Tags: Web browsers, .NET, Linux Distro, Mozilla Corp., Microsoft Corp., MS .NET Firefox add-on, MS .NET, vunerability, plug-in

Discussion threads 2009-10-19

Mozilla blocks (then unblocks) dangerous MS .NET Firefox add-on

The move comes in the wake of an admission from Microsoft that the add-on was exposing users to drive-by malware downloads via a remote code execution vulnerability. by Ryan Naraine

Tags: Microsoft Corp., Mozilla Corp., Add-on, Spyware, Adware & Malware, Cyberthreats, Security, Viruses And Worms, Ryan Naraine

Blog posts 2009-10-19

Microsoft exposes Firefox users to drive-by malware downloads

The Microsoft .NET Framework Assistant add-on that Microsoft sneaked into Firefox without permission from end users is vulnerable to a serious code execution vulnerability. by Ryan Naraine

Tags: Mozilla Firefox, Malware, Microsoft Corp., Spyware, Adware & Malware, Cyberthreats, Web Browsers, Viruses And Worms, Security, Internet, Ryan Naraine

Blog posts 2009-10-16

Google Chrome update doesn't remove older, vulnerable version

But how would an attacker cause the vulnerable code to execute?Frankly, this seems to be a minor issue. If you are launching Chrome you will launch the latest version. The older version is just cruft. I don't see any scenario where you inadvertently or an attacker can execute the older...

Tags: Microsoft Windows, Web browsers, SECURITY, IE8, Chrome, Google Chrome, Google Inc.

Discussion threads 2009-10-01

Windows SMB2 exploit now public; Expect in-the-wild attacks soon

Another "researcher" makes a name for himself.So, just why was it necessary for for this Bozo to actually "create and release the code" for the exploit? Let me guess. His company makes money by hyping up the level of fear. See their web page where they say...

Tags: Firewalls, SECURITY, Network security, Patches, Microsoft Windows, Windows SMB2, attack, firewall, antivirus

Discussion threads 2009-09-29

When it comes to security, who do you trust more - Microsoft or Google?

Given their experience it has to be Microsoft.{NT}RE: When it comes to security, who do you trust more - Microsoft or Google?IMHO, Open Source applications are inherently more secure, with far more people pouring over the code.Closed source simply has the undiscovered flaws.Given that they design and make the OS...

Tags: Web browsers, Microsoft Corp., security, Google Inc., secure, plug-in

Discussion threads 2009-09-25

Microsoft says Google Chrome Frame doubles IE attack surface

Actually, it means that some of the browsing will be much safer by using Chrome. Notice that Microsoft's ONLY arguments here are bogus security arguments. They do not even try to deny that Chrome is much faster and better.RE: Microsoft says Google Chrome Frame doubles IE attack surfaceIf Google Chrome...

Tags: Web browsers, Google Inc., Microsoft Internet Explorer, Chrome, Microsoft Corp., Web browser, plug-in

Discussion threads 2009-09-24

PBS.org hacked, serving malware cocktail

They must be running linux.yes, they are running LinuxSurprise, Linux is not immune...However, to be fair this hack was likely through some application layer vulnerability, not a Linux exploit, unless the admin is really inept. Most likely a SQL injection attack.Linux nor Windows are really hackable when set up as...

Tags: UNIX, Operating systems, OPEN SOURCE, malware, Linux, Foxit Reader, PBS

Discussion threads 2009-09-18

Microsoft patches gaping Windows worm holes

So basically all of them......affecting Vista or 7 require user intervention just like all other modern operating systems these days?OK.RE: Microsoft patches gaping Windows worm holesAll of the bulletins specifically say that Win7 is not affected.Two require no user interaction whatsoever.The first two listed require user interaction only in that...

Tags: Microsoft Windows 7, Microsoft Windows Vista (Longhorn), INTERNET, Patches, UAC, user interaction, OS X., Microsoft Corp., Microsoft Windows Vista, Microsoft Windows, patch management

Discussion threads 2009-09-08

Vulnerable Adobe Flash shipped with Snow Leopard

That's all fine and goodbut Apple OSX is based on tried and tested UNIX and is immune to such vulnerabilities. Magic dust is able to discover exploits before they get a chance to spring into action.Unix was designed with security in mind and every object is securable with extremely high...

Tags: Operating systems, Cyberthreats, Snow Leopard, Apple Inc., operating system

Discussion threads 2009-09-03

Snow Leopard's malware protection only scans for two Trojans

The much hyped built-in malware protection into Apple's Snow Leopard upgrade appears to be nothing more than a XProtect.plist file containing five signatures for two of the most popular Mac OS X trojans - OSX.RSPlug and OSX.Iservice. Intego, the company that originally reported the new feature, has...

Tags: Trojan Horse, Malware, Apple Inc., Spyware, Adware & Malware, Cyberthreats, Apple Mac OS X, Viruses And Worms, Security, Operating Systems, Software, Apple Mac OS, Dancho Danchev

Blog posts 2009-08-28

Mac OS Snow Leopard: Great news for Windows 7

I still say Mac is the best multi-boot PCIn my dream situation, I've got a home server created from a Mac Pro. The native Mac OS X would run, with Parallels running instances of Windows and Ubuntu and whatever else I need. I would stream all the media...

Tags: Desktops, Keyboards, Operating systems, Apple Macintosh, Apple Mac OS X v10.6 Snow Leopard, Microsoft Windows 7, GREAT NEWS, Microsoft Windows, Apple Mac OS, Apple Inc., keyboard

Discussion threads 2009-08-27