Main Menu

Login



Support Virus.Org

Help support Virus.Org by donating.
Donating allows us to keep this site free and pay the running costs of all our services.
Mozilla Firefox gets a Phishing Update PDF Print E-mail
Written by Editor   
Saturday, 26 February 2005 12:36
The new kid on the block Firefox got itself a little security update this last week. Firefox version 1.0.1, includes several fixes to guard against spoofing and arbitrary code execution and changes designed to boost the stability of the browser. The update addresses a recent security flaw involving dialog download dialogue boxes and a code injection vulnerability, also included are a number of other bug fixes listed here. The big anti-phishing fix however is a change in the way its browser renders international characters in domain names.

The phishing fix addresses the unintended result of how International Domain Names (IDNs) can be used to trick users into visiting ‘spoofed’ sites using certain international characters. The fix is seen as more of a temporary workaround, so rather than disabling IDN, the Mozilla Foundation has settled on displaying International Domain Names as "punycode" by default so that spoofed web sites are easier to spot. Mozilla does not see this as a permanent fix, and it’s unlikely to placate some critics who are urging browser manufacturers to stick by IDN.

You can grab your updated copy of Firefox here.

Add this page to your favorite Social Bookmarking websites
Digg! Reddit! Del.icio.us! Google! Live! Facebook! Technorati! StumbleUpon! Yahoo!
Last Updated ( Thursday, 14 September 2006 23:14 )