Comments on: FireFox Vulns – MFSA 2008-35

By: rob

rob — Fri, 18 Jul 2008 17:14:18 +0000

I love their recommendation on this:

“Using Firefox, or making sure it is at least running, prevents this attack.”

Don’t want to get pwned? Just add Firefox to your Startup folder!

By: Nate McFeters

Nate McFeters — Thu, 17 Jul 2008 13:43:46 +0000

Hahaha, not just older and fatter, but both much more married than we were last year.

By: kuza55

kuza55 — Thu, 17 Jul 2008 13:36:59 +0000

Ok, I must admit, I’m slightly confused why Mozilla decided to patch the pipes thing *now*.

I don’t know about you guys, but that was the trick I always needed to use with firefoxurl to get it to launch URLs in Firefox (not as glamorous as code-exec, but I was interested in cross-browser xss at the time when people were recommending things like people use different browsers for different things), so why the long delay?
Were they waiting for exploit code to pop up again?