'Highly Critical' Flaw in Firefox 2.0

By BetaNews Staff
Published 18 years ago

Security firm Secunia has issued an advisory regarding a newly discovered "highly critical" security flaw in Firefox 2.0 and later, which involves a special URI handler. Although the problem was initially attributed to Internet Explorer by researcher Thor Larholm, Firefox is the culprit.

According to Secunia, "Firefox registers the "firefoxurl://" URI handler and allows invoking Firefox with arbitrary command line arguments." This means that a malicious site visited in Internet Explorer could pass parameters using that URI handler that would be run automatically in Firefox, without any sort of validation. The firm suggests not visiting untrusted sites until the problem is resolved.

Tags:

34 Comments

34 Responses to 'Highly Critical' Flaw in Firefox 2.0

Got News? Contact Us

Recent Headlines

Microsoft is ready to badger Microsoft 365 subscribers to renew via a full screen nag

Business leaders fear Gen Z employees may leak company secrets for likes and lols

HitPaw launches FotorPea 5 and VikPea 5, bringing AI smarts to its photo and video editors

Google tests fingerprinting block to boost Chrome Incognito Mode privacy

Mastodon to roll out post quoting with powerful protection options

Microsoft unbundles Teams from Office 365 to avoid EU fine

Microsoft helps out app developers by wiping out Store fees

Why Trust Us

At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

'Highly Critical' Flaw in Firefox 2.0

34 Responses to 'Highly Critical' Flaw in Firefox 2.0

Recent Headlines

Microsoft is ready to badger Microsoft 365 subscribers to renew via a full screen nag

Business leaders fear Gen Z employees may leak company secrets for likes and lols

HitPaw launches FotorPea 5 and VikPea 5, bringing AI smarts to its photo and video editors

Google tests fingerprinting block to boost Chrome Incognito Mode privacy

Mastodon to roll out post quoting with powerful protection options

Microsoft unbundles Teams from Office 365 to avoid EU fine

Microsoft helps out app developers by wiping out Store fees

Most Commented Stories

This updated Windows 11 clone is Linux underneath and makes your old PC run faster -- get it now

Forget Windows 11, Windows 12.2 is the 'next evolution' of Microsoft's OS

As Windows 10 reaches end of life, Windows 11 is LOSING market share

The brilliant Windows 12 is everything Windows 11 isn't -- and the Microsoft OS we deserve

Why using a VPN is becoming more important than ever

Age verification laws are killing web traffic

Forget Tiny11, Nano11 takes Windows 11 debloating to the next level

Microsoft is rolling out Windows 11 25H2

Why Trust Us