Sunday, September 15, 2002
Minor Security Flaw in Mozilla -- 10:40 pm CST, Update by A.T. Hun
MozillaZine reports that there is a minor security flaw in all current releases of Mozilla. Basically it allows a website that uses the onUnload Javascript handler to find out what website you are going to. Unfortunately, this issue has been known for awhile, but hasn't been fixed yet.
There is a simple workaround, though. Create a file called user.js (if it doesn't already exist) in the same directory as your prefs.js file. Add this line to it:
user_pref("capability.policy.default.Window.onunload", "noAccess");
As far as security flaws go, this is a rather minor one. I suppose it's only really problem if you visit a porn website right after your church website or something :) Despite the fact that it is minor, I'm very disappointed that it's been known for months, but hasn't been fixed yet.
Recent Headlines
January 5, 2015: It Returns!
August 10, 2007: SCO SUCKS IT DOWN!
July 5, 2007: Slackware 12.0 Released
May 20, 2007: PhpBB 3.0 RC 1 Released
February 2, 2007: DOOM3 1.31 Patch
January 27, 2007: Join the World Community Grid
January 17, 2007: Flash Player 9 for Linux
December 30, 2006: Darkness over Daggerford 1.2
December 19, 2006: Pocket Tunes 4.0 Released
December 9, 2006: WRT54G 1.01.1 Firmware OK with Linux/Mac
The Haus is powered by:
All original information on this website is copyright © TheHaus.Net, 1999-2005. The use of original images, text, and/or code from this website without expressed written consent is prohibited. The authors of this site cannot be held responsible for any damage, real or imagined, which comes from the use of information presented on this site. All trademarks used are the properties of their respective owners. This site is not to be used as a floatation device (but if you try, I want a video tape of it).
![[Valid RSS]](/images/valid-rss.png "Validate my RSS feed")