| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
Firefox Preview Release update Bug (0.10.1) | |
|
||
| Time: 00:00 EST/05:00 GMT | News Source: ActiveWin.com | Posted By: Robert Stein | ||
|
Thanks Bruce. "Firefox simplifies the task of saving files by automatically using a filename based on the original link. A specific link format triggers a bug in this feature and can cause the deletion of files in the download directory. An attacker would need to convince a victim to click the "Save" button to download a file from their site. Workaround: Cancel unexpected file save prompts and any from untrusted sites. When saving files, right-click on the link and select "Save link as" from the context menu." | ||
|
Write Comment
Return to News |
Displaying 1 through 25 of 312 Last | Next |
The time now is
6:41:53 AM
ET.
Any comment problems? E-mail us |
| #1 By 10896 (142.167.148.13) at 10/4/2004 3:46:23 PM |
|
More security problem in Firebox, who would have guessed.
This is the most unsecure piece of software ever made. Just wait till the hackers really start looking at it , and with the source code avalable the disaster awaits all who use it. |
| #2 By 7797 (63.76.44.6) at 10/4/2004 3:48:25 PM |
|
"If you add them up, Mozilla/Firefox in 2004 easily has more vulnerabilities than IE 6 in 2004."
Wow, thats really surprising seeing how Firefox hasn't even reached 1.0 yet and IE has been at version 6.0 for over 3 years! |
| #3 By 13030 (198.22.121.120) at 10/4/2004 5:02:41 PM |
|
#14: I am impressed by your faith in a product that has had so many security problems despite not being a real target for hackers until recently.
I would argue that IE, since almost all serious browser hackers target it first, has had most of its vulnerabilities discovered. Speaking of faith: "[IE] has had most of its vulnerabilities discovered". I wouldn't make that bet any more than I would bet that most of the vulnerabilities have been discovered in Firefox. It's not faith that allows one to use Firefox, but rather a lack of pro-MS arrogance and zealotry. MS makes good products and so do other companies (sometimes those are acquired by MS!). Joel Spolsky (joelonsoftware.com) used to be a product manager for Excel. He has a very well-balanced view of software and MS's strengths and weaknesses. His company makes it's money off of MS-based solutions. He converted to Firefox a long time ago and wrote about it compared to IE. http://www.joelonsoftware.com/news/20030601.html http://www.joelonsoftware.com/items/2004/06/15.html Check it out. |
| #4 By 135 (69.7.134.5) at 10/5/2004 5:34:23 AM |
|
I had an older version of Mozilla on my laptop. By older, I mean only about 4 months old.
There was no way to automatically update it and keep up with all these security problems. The arrogance of the people who create Mozilla is just too much. They produce a buggy product, and then provide no easy way to keep up with all the patches. I finally just uninstalled it. Now I'm finally running Mozilla-free, and feel so much more secure. |
| #5 By 12071 (203.217.65.250) at 10/5/2004 10:26:43 AM |
|
#20 "The arrogance of the people who create Mozilla is just too much."
I wish the IE people were just as arrogant as those Mozilla people and allowed me to uninstall IE so I could feel a lot more secure. |
| #6 By 13030 (198.22.121.120) at 10/5/2004 11:08:15 AM |
|
#18 The reason Netscape changed its name from Netscape to Mozilla to Firefox was to deliberately hide the number of security holes in its crappy code. Add them all up and Microsofts IE is more secure.
Fact check: The Firefox name changes were to avoid confusion with other software products and existing open source projects. #18: Microsoft stopped working on IE so it could work on security for Windows 2003 and XP SP2. They have succeeded wonderfully. I applaud them for spending time on security that its competitors chose to spend on features. Fact check: IE development stopped because most of the IE developers were slated for work on the Avalon rendering engine in Longhorn. The security initiatives pulled some of them back from Avalon. #18: Those of you still pimping Firefox as being "safer"... Not just safer, but better. It's an easy sell. No one I have introduced to Firefox has gone back to IE. #20: I'm finally running Mozilla-free I've tried Mozilla off and on, but never did care for it. You should try Firefox. |
| #7 By 7797 (63.76.44.6) at 10/5/2004 1:33:31 PM |
|
"The reason Netscape changed its name from Netscape to Mozilla to Firefox was to deliberately hide the number of security holes in its crappy code."
LOL more proof that Parkker is on crack! The sad thing is.. I think he probably truly believes this. This post was edited by tgnb on Tuesday, October 05, 2004 at 13:34. |
| #8 By 135 (69.7.134.5) at 10/5/2004 4:01:47 PM |
|
I FEEL SO LIBERATED!
|
| #9 By 13030 (198.22.121.120) at 10/5/2004 5:00:45 PM |
|
#25 Nope. Not true. Just like shady used car salesmen roll back the odometer to hide the number of miles driven on a car, the Netscape team rolled back the security "odometer" by renaming the product. Twice.
Yup, it's a big cover-up! Just keep saying that to yourself and it will be true. Meanwhile, back to reality... this text quoted from http://www.wordiq.com/definition/Mozilla_Firefox provides a good summary of the name history behind Firefox: The project which became Firefox started as an experimental branch of the Mozilla suite called "mozilla/browser". The project founders, Blake Ross and Dave Hyatt originally intended to create the best possible browser for Microsoft Windows. When sufficiently developed, binaries for public testing appeared in September 2002 under the name "Phoenix". The "Phoenix" name was retained until April 14, 2003 when it was changed due to trademark issues with the BIOS manafacturer Phoenix Technologies. The new name - "Firebird" - was met with mixed reaction. In late April the Mozilla Foundation issued a statement which stated that the browser should be referred to as "Mozilla Firebird" in order to avoid confusion with the Firebird database server. However, continuing pressure from the Open Source community forced another change, and on February 9, 2004 Mozilla Firebird was renamed "Mozilla Firefox". #25: Yet the code base is identical to Mozillas The code bases are not identical. They do share the Gecko rendering engine, but the code bases were effectively forked over two years ago. Is it possible that an exploit could be shared due to some common code ancestry? Of course, but the exploits are not necessarily found in both Mozilla and Firefox. Using your logic of "identical code bases", then the exploits for each can't be summed otherwise you may be double counting. What is an exploit for one must be in the other and thus listed by Secunia, but that is not the case if you look at the listings for "Mozilla Firefox 0.x" and "Mozilla 1.7.x". And to get even more ridiculous, using your logic, you may as well add all Windows OS exploits and IE exploits together since they use much of the same shared code due to their tight integration. |
| #10 By 13030 (198.22.121.120) at 10/5/2004 5:01:37 PM |
|
#27: I FEEL SO LIBERATED!
I'm glad you finally started using Firefox! |
| #11 By 7797 (63.76.44.6) at 10/5/2004 6:23:56 PM |
|
"Nope. Not true. Just like shady used car salesmen roll back the odometer to hide the number of miles driven on a car, the Netscape team rolled back the security "odometer" by renaming the product. Twice."
This is not correct. First was Netscape. The codename for the Netscape Navigator was Mozilla. In 1998 the source code was opened and the Organization that would oversee its development would be Mozilla.org. A year after working on the next version, the developers decided the code was old crappy spagetti code and decided to pretty much start from scratch. This is why it took the Mozilla Organization pretty much an eternity to release version 1.0. In the meantime Netscape used pre-Mozilla 1.0 releases to ship Netscape 6.x versions. These versions were based on the new code and NOT the old Netscape code. Over time, Netscape simply became less relevant and more people downloaded and used the Mozilla.org releases instead. There was never any renaming done here. Netscape still exists, and is still based on the Mozilla.org code. Mozilla is the unbranded raw version on which Netscape is based on. Mozilla is a browser suite, containing Browser, Mail, IRC client etc. Then a small number of developers wanted to create a Browser only based on the Mozilla code. So they trimmed away many of the unnecessary things and enhanced the interface to make it more userfriendly. The codename for their Project was Phoenix. The Mozilla organization had to change the codename of this browser due to a naming confilct with the Phoenix Technologies company who among other things makes a web browser. The new name they chose Firefox was also in conflict with the Firefox SQL project so it was renamed once again to Firefox. None of these namechanges have anything to do with trying to hide the heritage of the code. Netscape is a branded version with extra proprietary features of the Mozilla Suite. Firefox is a lightweight Web brower that is based on the Browser parts of the Mozilla Suite. I dont know why i wasted my time typing this up since you, Parkker are really just interested in trolling and spouting FUD. |
|
Write Comment
Return to News |
Displaying 1 through 25 of 312 Last | Next |
The time now is
6:41:53 AM
ET.
Any comment problems? E-mail us |
