Linux Today: Linux News On Internet Time.

ZDNet UK: Firefox Phishing Vulnerability Discovered

Jan 05, 2005, 17:30 (16 Talkback[s])
(Other stories by Ingrid Marson)

"A vulnerability in Firefox could make users of the open source browser more likely to fall for phishing scams.

"The flaw in Mozilla Firefox 1.0, details of which were published by Secunia on Tuesday, allows malicious hackers to spoof the URL in the download dialog box which pops up when a Firefox user tries to download an item from a Web site. This flaw is caused by the dialog box incorrectly displaying long sub-domains and paths, which can be exploited to conceal the actual source of the download..."

Complete Story

Related Stories: