CIS finds flaws in Firefox 2.0 password manager
Chapin Information Services has discovered a new flaw in the Mozilla Firefox web browser that exposes saved passwords to clever attackers.
Given the new nature of this type of attack, CIS has named this a Reverse Cross-Site Request (RCSR) vulnerability. This flaw could affect anyone visiting a weblog or forum website that allows user-contributed HTML codes to be added.
At Chapin Information Services.
[ Read more ]