Firefox Extensions

Legal Issues

Last Post by trewmte 18 years ago

1 Posts

1 Users

0 Reactions

625 Views

RSS

trewmte

(@trewmte)

Noble Member

Joined: 19 years ago

Posts: 1877

Topic starter 01/06/2007 8:57 pm

According to security researcher Christopher Soghoian many widely used Firefox extensions, including toolbars from Google, Yahoo, and AOL, do not use secure connections to update themselves. His research highlights that it is possible to leave users vulnerable to a "man-in-the middle" attack, which could trick Firefox into downloading malicious software from a site it mistakenly thought was hosting an extension.

http//paranoia.dubfire.net/2007/05/remote-vulnerability-in-firefox.html

Quote

8 Forums
15.7 K Topics
92.3 K Posts
314 Online
41.1 K Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed