Two flaws found in Firefox

By Caroline McCarthy
Posted on ZDNet News: Feb 7, 2007 10:59:00 PM

A security company has reported two new flaws in the Mozilla Firefox browser that may leave locally saved files vulnerable to outside attacks.

Both flaws were announced by SecuriTeam, a division of Beyond Security, this week. The first flaw lies in Firefox's pop-up blocker feature, according to a SecuriTeam statement on Monday. The browser typically does not allow Web sites to access files that are stored locally, according to the official report, but this URL permission check is superseded when a Firefox user has turned off pop-up windows manually. As a result, an attacker could use this flaw to steal locally stored files and personal information that might be stored in them.

A possible scenario for such an attack would involve the user clicking on a malicious link that would furtively plant a target file equipped with an exploit code on the computer's hard drive. Then it would display a prompt asking the user to allow a pop-up to appear in order to play a video file or download. The attacker-supplied file would then be loaded thanks to the browser flaw, which could give the attacker local file read privileges.

It appears that this flaw may only apply to older versions of Firefox, prior to the current 2.0 release, but Beyond Security was unavailable for comment on the matter.

The second flaw, announced by SecuriTeam on Wednesday, concerns Firefox's phishing protection feature. With this vulnerability, an adept phisher could fool the browser into believing that a fraudulent site is actually secure by adding particular characters into the URL of its Web site.

The phishing flaw does appear to apply to the current 2.0.0.1 version of Firefox.

Mozilla was unavailable for comment on Wednesday.

SponsoredWhite Papers, Webcasts, and Downloads

Talkback
Most Recent of 60 Talkback(s)

Thread View
Flat View

Please don't be so disrespectful and clueless: Just because we like using firefox doesn't mean we are communists. FF is NOT a hipie tool. It is 10 times more secure has many plug-ins that can greatly help buisness, and renders sites in a much more... (Read the rest); Posted by: aceofspades1217@gmail.com Posted on: 03/09/07 You are currently: Logged In as: a Guest | Login | Terms of Use

Already fixed flaws found, heh CobraA1 | 02/07/07

(sarcasm) xxn1927 | 02/08/07

only one fixed... flatliner | 02/08/07

It's like saying there are problems wirh IE5 javarunner | 02/07/07

Not Quite nmh | 02/08/07

Same thing Spoon Jabber | 02/08/07

The reason a flaw found in FF1.5.x... Raymond Danner | 02/08/07

Unfair slap at Firefox okvideoguy | 02/08/07

It's not outdated if... flatliner | 02/08/07

What problems specifically? Logics | 02/10/07

It's relevant Urdolf | 02/09/07

firefox 2 clockmendergb@... | 02/12/07

Whether you hate or love Mozilla or Microsoft Boot_Agnostic | 02/08/07

Once a month Spoon Jabber | 02/08/07

Reply to Boot_Agnostic LegendsOfBatman | 02/08/07

Hard to imagine that Mozilla's browser xuniL_z | 02/08/07

10s of millions a year? Spoon Jabber | 02/08/07

Well it's payment for advertising xuniL_z | 02/08/07

Most OSS projects are commercial Logics | 02/10/07

you STILL don't get it do you? mdsmedia | 02/09/07

Two flaws found in Firefox neverhome | 02/08/07

Bravo! xxn1927 | 02/08/07

Message has been deleted. corticus | 02/08/07

Bonehead often? jt@... | 02/08/07

Watch it. Nearly flagged as offensive. Raymond Danner | 02/08/07

IE's a serious business product? Hahahahahahaha! haydens0 | 02/08/07

Just more bull from MS bachers like you. workit@... | 02/08/07

Believe it... xuniL_z | 02/08/07

Ignorant of history critic-at-arms | 02/08/07

Blinded by the light! Still Lynn | 02/13/07

FF's struggles nix_hed | 02/13/07

Fooled me for a second............... silvergeek | 02/08/07

You might as well give it up Ole Man | 02/08/07

Re: of course... BigThunder1 | 02/08/07

you got it backwards Sowhatsupyouranus@... | 02/08/07

You are just a... baka_toroi | 02/12/07

Oh absolutely! Jambalaya Breath | 02/12/07

Please don't be so disrespectful and clueless aceofspades1217@... | 03/09/07

Why bother? xxn1927 | 02/08/07

You forgot one... mdsmedia | 02/09/07

MS bachers (siq) haydens0 | 02/08/07

#5 Sowhatsupyouranus@... | 02/08/07

Let's not start picking on spelling, etc. Big Scoddie | 02/08/07

I gave up correcting spelling errors ages ago I am Gorby | 02/08/07

I hate it when people mispell swoopee | 02/09/07

then instead of than,.... mdsmedia | 02/09/07

Umm... whytestar@... | 02/12/07

I only have 1 question lynne1462@... | 02/08/07

not me... zoroaster | 02/08/07

Poor excuse sam.cooks@... | 02/09/07

Sarcasm? Al K. Hall@... | 02/09/07

Update Gotcha Wayne Reid | 02/09/07

Why is this a "news" item? interested_amateur@... | 02/09/07

If you bothered to read the article... mdsmedia | 02/09/07

You're right. Todd_Ehlers | 02/09/07

Dorks 2978 smokeyboy03801@... | 02/09/07

WHY would some one lynne1462@... | 02/12/07

Finally... Gazok | 02/13/07

Glad. ttocsmij | 02/13/07

This is NOT news ve3sy | 03/09/07

What do you think?

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

SponsoredWhite Papers, Webcasts, and Downloads

Visit the ZDNet Enterprise Mobility Hub sponsored by Verizon Wireless! It has the latest news, commentary, and resources for your mobile and wireless strategy development.
Video: How to spoof a MAC address
Five steps to protect mobile devices anywhere, anytime
Fetch Your E-Mail from Anywhere
From our sponsors
Push to Talk from Verizon Wireless Choose Verizon Wireless and get a Push to Talk service you can rely on. The only service that comes with the Network. Starting at $699.