Topics:
Firefox's pop-up blocker open to attack
Oh, the irony! According to security experts, Firefox's pop-up blocker--designed to protect web users from malicious software and the annoyance of pop-ups--contains a flaw that could allow hackers access to a user's local drive. If a user manually disables Firefox's built-in pop-up blocker to allow a specific window to open, the normal URL permission checks are bypassed, making the user's machine vulnerable to code execution attacks. This problem only affects 1.x versions of Firefox and is not present in version 2.0, the latest version of the browser. All current users of Firefox 1.x are advised to upgrade, at least until a fix is available.
Comments