• We've upgraded our forums. Please post any issues/requests in this thread.

Mozilla Admits Security Breach, Promises Fix by February 5th

Joined
Jan 29, 2006
Messages
9,066 (2.09/day)
Likes
287
Location
My house.
Processor AMD Athlon 64 X2 4800+ Brisbane @ 2.8GHz (224x12.5, 1.425V)
Motherboard Gigabyte sumthin-or-another, it's got an nForce 430
Cooling Dual 120mm case fans front/rear, Arctic Cooling Freezer 64 Pro, Zalman VF-900 on GPU
Memory 2GB G.Skill DDR2 800
Video Card(s) Sapphire X850XT @ 580/600
Storage WD 160 GB SATA hard drive.
Display(s) Hanns G 19" widescreen, 5ms response time, 1440x900
Case Thermaltake Soprano (black with side window).
Audio Device(s) Soundblaster Live! 24 bit (paired with X-530 speakers).
Power Supply ThermalTake 430W TR2
Software XP Home SP2, can't wait for Vista SP1.
#1
It would appear that running any of 600 add-ons in Mozilla Firefox opens up a terrible hole. When exploited, this hole allows a hacker to steal "session information, including session cookies and session history". Mozilla promises a fix by February 5th, with the release of Firefox version 2.0.0.12. While Mozilla classifies this threat as a "high risk", there is some controversy in the hacker world as to how bad this threat really is. According to a hacker, via "hiredhacker.com", this isn't as big a problem as people have made it out to be. However, it is certainly more serious than "leaking a few variables", and should definitely be patched as soon as possible.

Show full news post
 
Joined
Dec 9, 2007
Messages
746 (0.20/day)
Likes
88
#2
Well, as long as it's patched up quickly, no problem. :) This is why I like Mozilla and Open Source software in general, every issue is resolved as fast as possible to minimize any inconvenience they may cause. That's more than I can say of some *other* software company... :mad:
 
Joined
Jul 26, 2007
Messages
536 (0.14/day)
Likes
41
Location
Melbourne, Australia
System Name beast
Processor 3930K
Motherboard Gigabyte GA-X79-UD3
Cooling Noctua NH-U12P SE2011
Memory 16GB Kingston Value DDR3 1333Mhz CL9
Video Card(s) Sapphire 5870 1GB
Storage 1x 120GB Intel 520
Display(s) 3x X243BW@5760x1080
Case Antec P182
Power Supply Antec TruePower Trio 650
Software Windows 7 Ultimate 64
#3
altho i can see how thats a good thing, admitting its responsable for the developers to announce the discovery of flaws and risks in their software. i am personally doubtfull that this will get patched very quickly, ive know mozilla to sit on their hands about previous security flaws for firefox. ( i beleve one flaw didnt get patched for 24months )
(not trying to start flame blah) just imho.