Firefox bookmarking vulnerability emerges

A Polish hacker who discovered a Firefox phishing flaw earlier this week has uncovered a second flaw, which could allow hackers to steal user credentials used for common startup pages. The flaw allegedly lies in the way that the open-source browser handles bookmarks--and can be exploited to steal authentication cookies. Though there are no patches available yet, Mozilla has pledged to incorporate a fix into the next build of Firefox.