Source Pravda.Ru

Mozilla could allow hackers to hijack a computer

Mozilla, the non-profit group behind the Firefox opensource browser, issued an alert, warning users that a combination of bugs could allow criminals to access users' &to=http:// english.pravda.ru/main/2002/12/26/41406_.html ' target=_blank>private information - including banking details, logins and passwords.

There is broad concern that hackers may be turning their focus on Firefox, which initially won over users by promising more secure internet surfing.

The exploitation of two separate flaws in Firefox means that outside hackers can return to surfers’ previously visited pages. These could contain credit card details or other personal information.

The rush to patch the problems, which also affect Mozilla Suite, the all-in-one &to=http:// english.pravda.ru/usa/2002/11/18/39602.html ' target=_blank>internet application, marked the fourth major security scare at Mozilla in three months, informs the Times Online.

Firefox users have been urged to disable the browser's javascript option to provide a temporary fix to the problem. wo critical vulnerabilities have been found in Firefox that, together, could allow hackers to hijack a computer by running malicious code through the open-source Web browser.

The Mozilla Foundation, parent of Firefox, said the JavaScript vulnerabilities could be exploited to cause a browser frame to navigate back to a previous Web address, enabling an attacker to inject script into any site and to steal cookies or sensitive data from that site -- or to perform actions unauthorized by the user.

n response, the Mozilla Foundation has changed its update servers to protect against this arbitrary code execution and is working on a patch for the problems.