Firefox 2.0.0.12 Still Vulnerable to Hacks

zekrahminator · Feb 11, 2008

Just a few hours after Mozilla promised the public they were safe from hackers while using Firefox 2.0.0.12, a hacker went and found a way around the patch. The hacker, named Ronald van den Heetkamp, has this to say to the Firefox developer team.

Don't patch vulnerabilities for fifty percent, take the time and fix the cause. Because directory traversal through plugins is all nice and such, we don't need it. We can trick Firefox itself in traversing directories back. I found another information leak that is very serious because we are able to read out all preferences set in Firefox, or just open or include about every file stored in the Mozilla program files directory, and this without any mandatory settings or plugins.

Ronald van den Heetkamp recommends installing the NoScript add-on, or simply using an alternative browser, until Mozilla fixes this bug.

View at TechPowerUp Main Site

Dangle · Feb 11, 2008

I thought IE was the only browser vulnerable to hax. Guess Ravenas was wrong.

Ravenas · Feb 11, 2008

Dangle said:
I thought IE was the only browser vulnerable to hax. Guess Ravenas was wrong.

What?

btarunr · Feb 11, 2008

the thumb-rule wins again, that if something is popular, it faces security vulnerabilities. Mozilla is faced with the same and from what I hear they're working harder (than MS) and are still falling short of the resources to quickly address security issues. Go Opera :cool:

Ravenas · Feb 11, 2008

btarunr said:
the thumb-rule wins again, that if something is popular, it faces security vulnerabilities. Mozilla is faced with the same and from what I hear they're working harder (than MS) and are still falling short of the resources to quickly address security issues. Go Opera

Or Safari

moto666 · Feb 11, 2008

Great...

Ahh anyway I have NoScript!

pabloc74 · Feb 11, 2008

i still waiting firefox 3.* :ohwell:

1c3d0g · Feb 11, 2008

btarunr said:
the thumb-rule wins again, that if something is popular, it faces security vulnerabilities. Mozilla is faced with the same and from what I hear they're working harder (than MS) and are still falling short of the resources to quickly address security issues. Go Opera

No one claimed Firefox is flawless, but they do address and fix security issues faster than most companies.

cool_recep · Feb 11, 2008

I can't hear Firefox fans. heheh....

Are you there?

[I use Firefox ATM but Opera is better]

Processor	AMD Athlon 64 X2 4800+ Brisbane @ 2.8GHz (224x12.5, 1.425V)
Motherboard	Gigabyte sumthin-or-another, it's got an nForce 430
Cooling	Dual 120mm case fans front/rear, Arctic Cooling Freezer 64 Pro, Zalman VF-900 on GPU
Memory	2GB G.Skill DDR2 800
Video Card(s)	Sapphire X850XT @ 580/600
Storage	WD 160 GB SATA hard drive.
Display(s)	Hanns G 19" widescreen, 5ms response time, 1440x900
Case	Thermaltake Soprano (black with side window).
Audio Device(s)	Soundblaster Live! 24 bit (paired with X-530 speakers).
Power Supply	ThermalTake 430W TR2
Software	XP Home SP2, can't wait for Vista SP1.

System Name	Vista
Processor	Q6600
Memory	2GB Corsair 800mhz
Video Card(s)	2900XT
Storage	300GB 7.2kRPM Seagate for OS; 74GB 10kRPM WD for Games
Audio Device(s)	XFi
Power Supply	750W

System Name	AM5
Processor	AMD Ryzen R9 7950X
Motherboard	Asrock X670E Taichi
Cooling	EK AIO Basic 360
Memory	Corsair Vengeance DDR5 5600 64 Gb - XMP1 Profile
Video Card(s)	AMD Reference 7900 XTX 24 Gb
Storage	Crucial Gen 5 1 TB, Samsung Gen 4 980 1 TB / Samsung 8TB SSD
Display(s)	Samsung 34" 240hz 4K
Case	Fractal Define R7
Power Supply	Seasonic PRIME PX-1300, 1300W 80+ Platinum, Full Modular

System Name	RBMK-1000
Processor	AMD Ryzen 7 5700G
Motherboard	ASUS ROG Strix B450-E Gaming
Cooling	DeepCool Gammax L240 V2
Memory	2x 8GB G.Skill Sniper X
Video Card(s)	Palit GeForce RTX 2080 SUPER GameRock
Storage	Western Digital Black NVMe 512GB
Display(s)	BenQ 1440p 60 Hz 27-inch
Case	Corsair Carbide 100R
Audio Device(s)	ASUS SupremeFX S1220A
Power Supply	Cooler Master MWE Gold 650W
Mouse	ASUS ROG Strix Impact
Keyboard	Gamdias Hermes E2
Software	Windows 11 Pro

System Name	AM5
Processor	AMD Ryzen R9 7950X
Motherboard	Asrock X670E Taichi
Cooling	EK AIO Basic 360
Memory	Corsair Vengeance DDR5 5600 64 Gb - XMP1 Profile
Video Card(s)	AMD Reference 7900 XTX 24 Gb
Storage	Crucial Gen 5 1 TB, Samsung Gen 4 980 1 TB / Samsung 8TB SSD
Display(s)	Samsung 34" 240hz 4K
Case	Fractal Define R7
Power Supply	Seasonic PRIME PX-1300, 1300W 80+ Platinum, Full Modular

Firefox 2.0.0.12 Still Vulnerable to Hacks

zekrahminator

McLovin

Dangle

New Member

Ravenas

btarunr

Editor & Senior Moderator

Ravenas

moto666

Guest

pabloc74

New Member

1c3d0g

cool_recep

System Name	GS43VR 7RE
Processor	Core i7 7700HQ
Motherboard	MSI GS43VR 7RE
Cooling	Stock
Memory	8 GB DDR4 2400 MHz
Video Card(s)	GTX 1060
Storage	Samsung 950 PRO
Display(s)	14" IPS
Case	Metal
Audio Device(s)	Realtek ALC 898
Power Supply	Adapter
Mouse	Rival 100
Keyboard	SteelSeries
Software	Windows 10 Version 1703

System Name	Pabloc74
Processor	i7 920
Motherboard	Asus P6T Deluxe V2
Cooling	Corsair H50
Memory	Gskill 6gb Trident 2000mhz
Video Card(s)	Sapphire 5870 Vapor-X
Storage	Corsair Force GT 120gb + Samsung F1 1tb
Display(s)	Samsung T260
Case	Corsair Obsidian
Audio Device(s)	X-Fi Titanium Fatality
Power Supply	Corsair HX1000
Software	Windows 7 Ultimate x64
Benchmark Scores	no benchs!, machine use for gaming only!