More Firefox vulnerabilities
Posted by isilanes on April 27, 2006
It’s getting old already. Not Firefox, mind you. What upsets, bores, or downright outrages me, are those “impartial” vulnerability reports that newspapers, blogs and web sites publish, regarding both IE and Firefox bugs and exploits.
The last one, so far, I found at menéame. Their source of info is an article at Hispasec. In the name of “political correctness”, they reveal a bug in IE, and another one in Firefox. The reader gets the impression, not only that no browser is perfect (which is true), but that both have comparable vulnerabilities, which is a screaming lie.
The IE vulnerability they report is that a web page with specially crafted OBJECT tags can stop IE from working, and leave it in a state where arbitrary code could be injected into it and then executed. Pretty scary news, if the second part is true.
Which bug would you prefear to bear with, even not taking into account that the Firefox bug will be fixed much faster?
This entry was posted on April 27, 2006 at 7:23 am and is filed under Free software and related beasts. Tagged: en, firefox, floss/linux, security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.