Firefox flaw raises phishing fears | TalkBack on ZDNet

On TechRepublic: 12 tech terms that make you sound old

BNET Business Network:: BNET; TechRepublic; ZDNet

TalkBack 14 of 34:: Next »; « Previous

Thread View
Flat View

User action required: "a Firefox user would have to click on a link in an e-mail that pointed to a spoofed Web site and then download malicious software from the site, which would appear to be downloaded from a legitimate site."

Someone want to explain why the step of clicking a link to a spoofed web site in an email is necessary? I can understand it would be one way for this to be exploited, but it would seem that all that is really required is clicking on a link on a web site that has the download link formatted to exploit the flaw. This could be a hacked site or an intentionally setup site that lures people in. Why is the email necessary except to make it look like the user really has to go through a lot of steps for this to matter?; Posted by: PA-ITGuy Posted on: 01/07/05 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

I'm surprised it took this long for ZDNet to report this Michael Kelly | 01/07/05

Sounds pretty thin Roger Ramjet | 01/07/05

Your hypochracy knows no bounds! ShadeTree | 01/07/05

Your hypochracy knows no bounds! Squawkbox | 01/07/05

I'm not sure anybody would be faster or slower ... George Jay | 01/08/05

Ummm SHADETREE did you happen to read this Squawkbox | 01/07/05

IE's flaw does not excuse Firefox's flaw Michael Kelly | 01/07/05

I never said that Firefox should be excused. Squawkbox | 01/07/05

Doesn't matter Michael Kelly | 01/07/05

Stupid users will be stupid users. The King's Servant | 01/24/05

Time for a Change! soulcircus | 01/07/05

Nothings better than Linux FilledOut | 01/08/05

How about a period every now and then? ejhonda | 01/10/05

User action required PA-ITGuy | 01/07/05

User education required Anti_Zealot | 01/07/05

OK... PA-ITGuy | 01/07/05

the bug is in the download dialog window bobjones68@... | 01/08/05

to truncate, or not to truncate... linuxoverwindows | 01/08/05

In my Firefox version 1.0 I see the site as.... The King's Servant | 01/24/05

giving out your password linuxoverwindows | 01/08/05

Security? Rodney Davis | 01/07/05

Slight correction AmusedAtItAll | 01/07/05

You said: Rodney Davis | 01/07/05

Rodney Said, Bill Said BXLE | 01/08/05

Not nearly as easy. The King's Servant | 01/24/05

Not completely disagreeing but... IT Scion | 01/08/05

ive seen... linuxoverwindows | 01/08/05

Not looking back BXLE | 01/08/05

Top 11 New Firefox Extensions Squawkbox | 01/09/05

Extensions SC-man | 01/10/05

MS Apologists? Where are you? boomslang_z | 01/10/05

They have their hands full Squawkbox | 01/10/05

Alternate Browsers k9skip@... | 01/26/05

Alternate browsers k9skip@... | 01/26/05

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Open Standards Technologies Provide the Ingredients for Delivering Security Across the Papa Gino's Enterprise Dell Papa Gino's Holdings Corporation founded by the entrepreneur operates one ... Download Now
The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More