sniperwolf
07-23-2005, 03:01 AM
Users advised to upgrade browser add-on to fix flaw.
A serious security flaw has been discovered in Greasemonkey, a widely used extension to the Mozilla Firefox browser.
The bug is the third annoyance affecting Firefox users in the space of only a few days, following a successful attack on the Spread Firefox marketing site, and a Firefox update that broke many third-party extensions.
Greasemonkey is an extension, or add-on, to Firefox that allows users to customize the sites they view using powerful scripting tools. The problem is that certain of Greasemonkey's functions are exposed in an insecure way, allowing them to be exploited by a malicious site.
STORY (http://www.pcworld.com/news/article/0,aid,121918,00.asp)
A serious security flaw has been discovered in Greasemonkey, a widely used extension to the Mozilla Firefox browser.
The bug is the third annoyance affecting Firefox users in the space of only a few days, following a successful attack on the Spread Firefox marketing site, and a Firefox update that broke many third-party extensions.
Greasemonkey is an extension, or add-on, to Firefox that allows users to customize the sites they view using powerful scripting tools. The problem is that certain of Greasemonkey's functions are exposed in an insecure way, allowing them to be exploited by a malicious site.
STORY (http://www.pcworld.com/news/article/0,aid,121918,00.asp)