TechTalk & Personal Computing Guide

India-Forums

   
TechTalk & Personal Computing Guide
TechTalk & Personal Computing Guide

Firefox IDN bug and IE revisited

cdesai12 Goldie
cdesai12
cdesai12

Joined: 18 September 2004
Posts: 1900

Posted: 26 February 2005 at 11:26am | IP Logged
Firefox IDN bug and IE revisited

Bill Gates last week announced a beta for a new IE 7 browser that may ship later this year. But that still means we have a lot of unpatched items on Secunia's . Unfortunately, IE isn't the only browser that can have security holes.

The Firefox and Mozilla browsers are affected by attacks involving internationalized domain names (IDN), as I described in this space . A hacker using IDN can make a hacking site appear to be any other Web address, such as paypal.com, in these browsers' Address Bar.

What to do: The workaround I gave then for these "homograph" attacks — i.e., change network.enableIDN to false in Firefox's about:config settings — has been as a temporary measure. A forthcoming 1.0.1 release of Firefox will set this option to false by default. A better solution that doesn't totally eliminate support for IDN is expected to be included in Firefox 1.1.

A different workaround to eliminate the security hole is to close FireFox, then open the compreg.dat file from the user profile, using a text editor. Look for the entries for IDN and idn and set a quote mark (") at the beginning of those lines. This will disable Firefox's ability to visit sites that use IDN notation, but hopefully this will be only temporary. IE, of course, isn't vulnerable to this problem because it never offered support for the new IDN sites at all.

  • Page 1 of 1

Go to top

Related Topics

  Topics Author Replies Views Last Post
Microsoft AntiSpyware thinks Firefox is S

Author: cdesai12   Replies: 1   Views: 1005

cdesai12 1 1005 01 March 2005 at 11:09am by HUMM
Firefox..All Info

2

Author: *Anjali*   Replies: 13   Views: 1354

*Anjali* 13 1354 19 February 2005 at 6:59pm by Ibad
Firefox: Browser on a Roll

Author: cdesai12   Replies: 1   Views: 654

cdesai12 1 654 25 January 2005 at 4:05am by HUMM
Is Microsoft Bullying Firefox Users?

Author: cdesai12   Replies: 3   Views: 706

cdesai12 3 706 12 January 2005 at 6:49am by nandiinii

Forum Quick Jump

Forum Category / Channels
Forums

  • Please login to check your Last 10 Topics posted

Disclaimer: All Logos and Pictures of various Channels, Shows, Artistes, Media Houses, Companies, Brands etc. belong to their respective owners, and are used to merely visually identify the Channels, Shows, Companies, Brands, etc. to the viewer. Incase of any issue please contact the webmaster.

Popular Channels :
Star Plus | Zee TV | Sony TV | Colors TV | SAB TV | Life OK

Quick Links :
Top 100 TV Celebrities | Top 100 Bollywood Celebs | About Us | Contact Us | Advertise | Forum Index