Firefox password store insecure

by Volker Weber

Firefox, if allowed, can store usernames and passwords. If you visit a login page again, the password is then entered automatically. Due to a lack of checking, a second, evil page on the same server could steal those saved passwords.

heise Security - Browsercheck >


Same with SeaMonkey 1.0.6 [Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv: Gecko/20061030 SeaMonkey/1.0.6]

Oh wonder :)

Stephan Perthes, 2006-11-23

Same with OSX Safari! At least at my current installations with the heise check.

Karsten Fusenig, 2006-11-23

Old archive pages

I explain difficult concepts in simple ways. For free, and for money. Clue procurement and bullshit detection.


Paypal vowe