USNCVA - Now Read This

NOW READ THIS
("Security Advisory")

Go Back

Submitted by: Bill Hickey
NCVA List Master

NRT-0265 Firefox and Safari Have Password Manager Flaw:

The latest versions of Firefox and Safari contain a password management security flaw that could allow certain web sites to access stored user names and passwords. Users who have either browser configured to remember passwords and have JavaScript enabled are at risk. However, some developers and commentators have questioned whether this constitutes a vulnerability in the browser, as it requires the attacker to place malicious code on the web server. If an attacker can place script code on a server, they would be able to manipulate the pages anyway and would have other ways to steal user access data. Until a fix is released, users are urged to disable JavaScript in their browser or avoid the use of the password manager on sites where users are allowed to post JavaScript pages.

(vnunet.com 25JUL07)

Last Modified: Wednesday, 01-Aug-2007 23:46:57 EDT

NOW READ THIS ("Security Advisory")

NRT-0265 Firefox and Safari Have Password Manager Flaw:

NOW READ THIS
("Security Advisory")