/?pid=2994

Updated:06:33 PM EDT May 06
this is ggmania.com subsite

NEWS
rss feed 
 
top 100
archive
ARTICLES
CD/DVD tools
Free Antivir
Security
Drivers
Utilities
FORUMS
LINKS


(C) 2006-2025 TechAmok Independent
All Rights Reserved.


 
 Critical flaw found in Firefox 2.0.0.4 - TechAmok

Critical flaw found in Firefox 2.0.0.4 - [security]
02:46 PM EDT - Jul,10 2007 - post a comment

Security research firm Secunia has found a security flaw in the latest version of Firefox (2.0.0.4) that it labels "highly critical." The flaw can reportedly be exploited by malicious users in order to compromise a victim's machine. The problem is that Firefox registers the "firefoxurl://" URI handler and allows invoking firefox with arbitrary command line arguments. Using e.g. the "-chrome" parameter it is possible to execute arbitrary Javascript in chrome context. This can be exploited to execute arbitrary commands e.g. when a user visits a malicious web site using Microsoft Internet Explorer. The vulnerability is confirmed in Firefox version 2.0.0.4 on a fully patched Windows XP SP2. Other versions may also be affected.

Aside from simply avoiding malicious websites, Secunia CTO Thomas Kristensen tells CNet that system administrators can get around the hole by un-registering or removing the Firefox URI handler. Neither Kristensen nor CNet provides instructions for that procedure, however.


Add your comment (free registrationrequired)

Short overview of recent news articles

May,06 2025 Grand Theft Auto VI trailer #2
May,05 2025 Microsoft's Dirty Secret: Your Old PC is Now Trash!
May,04 2025 No Noise Cancelling? GOOD. Unboxing the nwm One Headphones & First
May,04 2025 NEW! 2025 Audi S5 (367hp) | 0-258 km/h acceleration
May,02 2025 Bugatti Bolide vs Nurburgring. 1825 HorsePower Insanity
May,01 2025 This will be the largest tech Yard Sale EVER! Insanely low prices on
May,01 2025 Skoda Kodiaq RS 245 // 0-100 100-200 TOP SPEED POV & SOUND
May,01 2025 Disable or Uninstall Windows Recall to Protect Your Data Privacy
May,01 2025 A new Alternative to Nextcloud? OpenCloud presented and local
Apr,29 2025 NVIDIA GeForce Hotfix Driver 576.26 Available
Apr,28 2025 2025 Porsche 911 992.2 GTS T HYBRID | SOUND 0-100 100-200 200-300 &
Apr,28 2025 We Made Perfect Thermal Paste in a Factory, ft. Der8auer | Made In
Apr,28 2025 Cyber Security Company CEO Arrested for Installing Malware on
Apr,27 2025 This Kid Made his Own Laptop and it's AMAZING!
Apr,26 2025 How is this SO CHEAP? - Ubiquiti Cloud Gateway Fiber
Apr,26 2025 Ripple president on stablecoins, Trump and tokenization
Apr,26 2025 T-Mobile Launches 5G Advanced
Apr,25 2025 540HP BMW E46 M3 5.0 V10 // 300KMH REVIEW on AUTOBAHN
Apr,25 2025 Has Nvidia Given Up?
Apr,23 2025 AMD Software Adrenalin 25.4.1 Beta Drivers Released
Apr,23 2025 Stop Paying for Cloud Storage: How I Built My Own Photo Backup
Apr,23 2025 Wednesday: Season 2 - Official Teaser Trailer
Apr,23 2025 Everything You Need To Know About Windows 10 LTSC
Apr,22 2025 Do NOT use Distilled Water for your Water Cooling Loop!
Apr,22 2025 Intel Improves 285K Performance with a Big Update
Apr,20 2025 FERRARI 812 GTS // REVIEW on AUTOBAHN
Apr,19 2025 Meta Disables Apple Intelligence in Facebook and Other Apps
Apr,19 2025 Change these Windows Settings for a smarter PC
Apr,19 2025 How a malware pdf hacked 4chan
Apr,18 2025 2025 BMW 3 Series G20 330e LCI II // TOP SPEED REVIEW on AUTOBAHN
Apr,17 2025 Samsung Just Released a Powerful Update - Millions of Phones Getting
Apr,17 2025 NVIDIA GeForce Game Ready 576.02 WHQL Drivers
Apr,16 2025 I Can't Review GPUs that Don't Exist... RTX 5060 and 5060 Ti
Apr,15 2025 This Desktop Motherboard Has a 16-Core Laptop CPU Built-In
Apr,14 2025 Hidden Windows Features You Should Be Using in 2025!
Apr,14 2025 Leo Says Ep. 80: Ryzen AI Max Looked Great at CES...So Why Did I Buy
Apr,13 2025 Microsoft finally removes a six-month old Windows 11 24H2 update
Apr,13 2025 Coil Whine Phenomenon on Water-Cooled RTX 5090 Frostbite
Apr,13 2025 Why I NEVER Sign In to Windows with a Microsoft Account!
Apr,12 2025 How good is Windows Defender in 2025?
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs