On BNET: Tech firms are hiring
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 44 of 137:
Next »
« Previous
With all due respect...check your sources
The information you are presented with in the article is neither complete nor accurate. It is always good practice to double check your sources and what exactly they mean by high severity (it is very oppinionated and many vendors have different oppinions), therefore I checked a neutral source with nothing to gain from either browser suffering. In the IT field a highly regarded source is a site called Secunia. Secunia has long been considered the best neutral source for security profiles on applications (note: I have no connection to Secunia). I'm just stating this so readers understand their credibility.

According to Secunia, Internet Explorer 6.0 has 14% vulnerabilities marked at extremely critical. 29% allow system access to your machine, another 19% allows a security bypass. Secunia currently has 79 vulnerabilities noted for IE 6.0. 20 vulnerabilities remain unpatched and at least one unpatched is considered highly critical.

Firefox on the other hand has only 12 security vulnerabilities in version 1.0, in beta releases (0.x versions) there were 26. Even if you add them together its still nearly half the number of Internet Explorer's. Out of Firefox 1.0's vulnerabilities, 4 remain unpatched. Now here is the important part: A bad vulnerability in firefox involves spoofing a web site to make it look like another site, a bad vulnerability in IE involves full system access or bypassing security features. The highest a firefox vulnerability has been rated by secunia is "Moderately Critical", where as IE has many rated as "Extremely Critical" (the highest severity you can get).

Please read over the site, even check out some others if you wish to verify the data (such as Security-Focus). Firefox's largest problem with security is with websites spoofing other websites, and that is considered severe to firefox. In IE a spoofing vulnerability is nothing considered to the many ways for a remote person to take over your system. You really have to put things in persepctive.

It is important to note that all of this information is based on machines that are fully up to date with patches and service packs. See the truth is, IE is integrated with the operating system. There is no reason why a web browser should *ever* have access to your OS, but yet IE is like a tunnel right into it. Firefox is more isolated, this is why system access through firefox is much more rare and when it does happen, its usually only under very special circumstances.

As far as code maturity goes, both the base code for IE and Firefox is nearly a decade old and bugs have been worked out of both for an equally long time. Firefox is constantly rewritting its legacy code with new code to be more secure, as most of its security problems stem from its old Netscape code. Its an on going battle but Firefox is currently definitly the winner in security (and arguably features too). Don't let one article with various quotes (possibly) taken out of context let you think otherwise. The misinformation presented in the article makes me weary of the credibility of the rest of it.

Regards,
Steve
Posted by: sgk284   Posted on: 03/23/05 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

IE SUCKS, FIREFOX RULES!  Jeff Spicoli | 03/23/05
correcto  mjbad2 | 03/23/05
The hits just keep on coming!  ShadeTree | 03/23/05
It's all cyclical  Squawkbox | 03/23/05
And of course MS now gets 3 good weeks a month  Michael Kelly | 03/23/05
You must of missed the ...  ShadeTree | 03/23/05
You're right, I did miss that.  Michael Kelly | 03/23/05
BAAAAH!!!  Jeff Spicoli | 03/24/05
Also, if you don't...  ReFoRMaT | 03/25/05
Keep on coming?  Martin Marvinski | 03/23/05
If your claim is that there are ...  ShadeTree | 03/23/05
thats not true  doh123 | 03/23/05
B.S.  ShadeTree | 03/23/05
This isn't a court of law  Michael Kelly | 03/23/05
As I stated ...  ShadeTree | 03/23/05
Sure it works  Michael Kelly | 03/23/05
If that were HALF ture...  thetargos | 03/23/05
If that were HALF true...  thetargos | 03/23/05
It doesn't work if you look at ...  ShadeTree | 03/23/05
Hey half true!  ShadeTree | 03/23/05
Head in the sand?  Michael Kelly | 03/23/05
Actually it said IE had more serious flaws -nt-  emcee_z | 03/23/05
Your zealotry is showing  bystander_z | 03/23/05
i read the entire thing, not just articles about it  doh123 | 03/24/05
INCORRECT.  whogoesthere | 03/24/05
Actually it has support and merit  IT Scion | 03/24/05
Oh Shadey!  Jeff Spicoli | 03/23/05
You are such a hypochrit  ShadeTree | 03/23/05
yup  Jeff Spicoli | 03/24/05
Firefox Users  harryomary1@... | 03/24/05
Thanks for clearing that all up for us Smokey!  Jeff Spicoli | 03/24/05
Oh, what, you mean, compared to...  ReFoRMaT | 03/25/05
LMAO.......  livewire^ | 03/25/05
The Great and Mighty  victor@... | 03/25/05
Wonderful  Qbt | 03/23/05
Compare it to the IE swiss-cheese nightmare, then get back to me.  BitTwiddler | 03/23/05
He won't be getting back to you  Jeff Spicoli | 03/23/05
Uhm...  Qbt | 03/23/05
It's called critical stupidity...  msdead | 03/24/05
Well..  Jeff Spicoli | 03/23/05
How long has ANY flaw been there?  Michael Kelly | 03/23/05
give me a break  doh123 | 03/23/05
give me a break (2)!  whogoesthere | 03/24/05
With all due respect...check your sources  sgk284 | 03/23/05
Awesome Post!  whogoesthere | 03/24/05
If ignorance is bliss you must be in heaven.  bystander_z | 03/23/05
LOL! NETCRAFT???  golowenow | 03/24/05
One word -- Akamai  bobjones68@... | 03/24/05
typical  victor@... | 03/25/05
where can I download IE7  wexwimpy@... | 03/24/05
What?  Qbt | 03/24/05
Coming this summer  golowenow | 03/24/05
Nope, just legacy code can be a pain  FilledOut | 03/23/05
Well... it's a LITTLE better  Michael Kelly | 03/23/05
They HAVE to fix that  Jeff Spicoli | 03/23/05
Agree with you guys on this one.  htotten | 03/23/05
No need to uninstall anymore...  Black-N-Blanc | 03/24/05
Aw, heck, Jezter~ already posted this info happy (NT)  Black-N-Blanc | 03/24/05
Huh? Just patched mine....  whogoesthere | 03/24/05
I don't think it's that bad  Michael Kelly | 03/23/05
Uninstall FF to update?  jezter~ | 03/24/05
That may be so  Michael Kelly | 03/24/05
Also...  Michael Kelly | 03/23/05
Good Idea.  htotten | 03/23/05
Wow is it really that difficult?  thetargos | 03/23/05
I was talking about Windows  Michael Kelly | 03/24/05
security  tilly4@... | 03/23/05
Let's be mature here...  Mike Cox | 03/23/05
ROTFLMAO Now I know why my exwife loves you Mike  Squawkbox | 03/23/05
9.0  htotten | 03/23/05
Wow... 10.0!!!  Michael Kelly | 03/23/05
9.5  Real World | 03/23/05
Another Fire Fox Bug  Marcwolf1960 | 03/24/05
9.5  CobraA1 | 03/27/05
What I am most pleased to hear..  Jeff Spicoli | 03/23/05
Now now jeff....  htotten | 03/23/05
Jefreeeeeee Bush HAS MADE complete sentences without hesistation  Squawkbox | 03/23/05
What part of the story?  ShadeTree | 03/23/05
Ya got me Shade, touche', Won't let that happen again  Squawkbox | 03/23/05
How Can You Tell A Liberal?  rdgrimes | 03/24/05
Liberals?  thutchins | 03/24/05
By their good looks, brains, and personality...  ralph124c41 | 03/24/05
They also  victor@... | 03/25/05
Mozilla  pesoto74 | 03/23/05
Yes, I can, BUT.....  dinosaur_z | 03/24/05
Good grief man!  Linux User 147560 | 03/24/05
So, you are  victor@... | 03/26/05
since most of you are too lazy to check.....  middle of nowhere | 03/23/05
The car analogy.  seosamh_z | 03/24/05
Another link  jerushy44 | 03/24/05
happy  CobraA1 | 03/27/05
Message has been deleted.  MIS Master | 03/24/05
Well then..  Jeff Spicoli | 03/24/05
Wasted Breath  IT Scion | 03/24/05
AGREED!  golowenow | 03/24/05
ye, right  rrfe@... | 03/24/05
Quel surprise .....  Reged04 | 03/24/05
How do you patch FireFox?  robradina@... | 03/24/05
Should be able to use Windows management tools  escoles@... | 03/24/05
It's  IT Scion | 03/24/05
FF wipes out with bad upgrade processes  nrozanov | 03/24/05
I can always give Ff two points...  msdead | 03/24/05
Why stop at security?  escoles@... | 03/24/05
To be fair...  JEisen | 03/24/05
I'm all for FF but  IT Scion | 03/24/05
It is not worth their time  victor@... | 03/26/05
Just a couple points.  jpfitz@... | 03/24/05
the new brouser of choice  johni123 | 03/24/05
Mozilla  drtlhaupt | 03/24/05
Can't Be True, Despite the Patch's Existence  PMC-CON | 03/24/05
major security flaw? Major?  Jazhawk | 03/24/05
IE has always ruled  golowenow | 03/24/05
you're a bright one, aren't ya  Monkey_MCSE | 03/24/05
er, Proven Track Record?  guitrwiz@... | 03/24/05
Guess you are getting the message.  golowenow | 03/24/05
Yes,But Not these Days  mobileomega | 03/25/05
This is news?  richdave | 03/24/05
No real threat to Mozilla  jackjack5 | 03/24/05
Another Firefox Bug  Marcwolf1960 | 03/24/05
OS?  Rokstar83 | 03/24/05
That explains it...  PA-ITGuy | 03/24/05
Firefox is a Farce!!!!!!!  Jestunes | 03/24/05
After testing  victor@... | 03/25/05
Is it a joke?  funfox | 03/27/05
IE is worse . . .  CobraA1 | 03/27/05
Why on EARTH are you still on ME!!!  tbbrickster_z | 03/28/05
Do you have any practical, real world experance with FF?  xshakes | 03/24/05
Time to face it!  TheMotz | 03/25/05
Time to face the facts!  CobraA1 | 03/27/05
downloads != users  net2dave | 03/29/05
Is firefox really that good  nsx100 | 03/26/05
Food??  funfox | 03/27/05
Doesn't hurt to try, forget what others say, make your own call: try it! nt  CobraA1 | 03/27/05
I Sure Think So  tbbrickster_z | 03/28/05
FUD vs. FUD  RimaDog@... | 03/27/05
Let's see....  jeffdickey | 03/31/05
Firefox  jroy | 04/02/05

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

SmartPlanet

Click Here