New Firefox iFrame Bug Bypasses URL Protections 118
Trailrunner7 writes "There is a newly discovered vulnerability in Mozilla's flagship Firefox browser that could enable an attacker to trick a user into providing his login credentials for a given site by using an obfuscated URL. In most cases, Firefox will display an alert when a URL has been obfuscated, but by using an iFrame, an attacker can evade this layer of protection, possibly leading to a compromise of the user's sensitive information."
Sigh... (Score:2, Funny)
When will people finally migrate away from Windows, IE and all the security flaws?
Wait a sec...
Re:Once again, kids (Score:4, Funny)
...ignore the temptation to smack that bear (or whatever flash ads are doing nowadays)
I think the expression that you are looking for is spank that monkey.
Re:Once again, kids (Score:1, Funny)
30,000th person today who has been told they are the one millionth visitor
Hmmmm ... I like those odds.
This does not affect my Firefox version (Score:5, Funny)
Re:Once again, kids (Score:5, Funny)
Cool! What do I win?!?
Re:iFrame? (Score:4, Funny)
Re:iFrame? (Score:1, Funny)
iFrames are commonly used to iNfect websites.
And you don't have to be an iNstein to discover that.