Problems come Mozilla's way

Posted by kaiser on 2 replies

Comments:

01. Feb 8, 2005 at 12:58pm by Rolly:

Would opera be any less of a target than firefox?

02. Feb 8, 2005 at 12:58pm by Anthony:

From the article:

For once, the affected browser is not the industry-leading Internet Explorer from Microsoft Corp. but rather several of its more robust competitors.

That’s because the aging IE lacks support for internationalized domain names — at least without a plug-in, which would then make IE vulnerable.

... the vulnerability, publicized at a weekend hacker conference, that enables so-called "phishing" scams involves a feature, not a coding error.

... The potential for the vulnerability has been known for awhile, but it has only recently gained the attention of security experts as non-English domain names become a reality.

...scammers may focus on exploiting other flaws because IE remains dominant.

"Right now the one thing that will likely prevent them from using it is that Internet Explorer users will not be able to see the page at all," he said.

So to summarize: it’s not actually news since the devs have known about it for a while, it’s not a coding error but a feature, and it only affects non-English speakers.  As the article suggests, few if any exploits based on this are likely since it doesn’t affect IE, and even fewer still (if any) are likely because it doesn’t affect English speakers.  The fact that this is Moz’s version of a "security problem" makes me feel quite safe :)

Reply to this message here:

Your name
Email
Website (optional)
Subject

HomeCreate PostArchivesLoginCMS by Encodable ]