Mozilla reveals that Firefox might be vulnerable to animated cursor flaw
April 7th, 2007 Leave a comment Visited 23 times, 1 so far today
Mozilla reveals that Firefox might be vulnerable to animated cursor flaw
Microsoft has just issued patches to fix a bug related to how the Windows OS rendered animated icons. The bad thing however is that Mozilla has said that their Firefox browser seems to be vulnerable to the same security issue.
Mike Schroepfer, VP of engineering for Mozilla said in a statement on their research: “It turns out there is a path through which Firefox is executing that Windows code. It’s in the way Firefox loads the animated cursors. It’s a more obscure way for it to work.”
He added that they have not yet seen any .ANI exploits aimed at Mozilla’s browser. However it could happen and they need to fix the problem as soon as possible.
Schroepfer added: “People wanting to load them legitimately would have to work around it, but we think their usage is rather small. I can’t confirm exactly what our fix is going to look like, but we’d like to find a way to avoid ever calling this code from within Windows and loading it from the network.”
|
TechWhack on Facebook
|
This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.