Rodney Campbell's Blog

2006.11.24 Daily Security Reading

by on Nov.24, 2006, under Security

FireFox Password Manager Flaw w/ POC

The flaw derives from Firefox’s willingness to supply the username and password stored on one page on a domain to another page on a domain. For example, username/password input tags on a Myspace user’s site will be unhelpfully propagated with the visitor’s credentials. Because the username/password fields need not be visible on the page, your password can be stolen in an almost completely transparent fashion.

IP Telephones

Remotely activate the ‘hands free’ function on an IP telephone (using software) to allow listening in to room conversations.

Comments are closed.

Looking for something?

Use the form below to search the site:

Still not finding what you're looking for? Drop a comment on a post or contact us so we can take care of it!

Copyright © 2015 Rodney Campbell

Images contained on this web site may not be used or reproduced in any way without prior permission.