Window Injection Vulnerability

Has this been fixed with Mozilla 1.7.5?

Jeane

 

Can you give a reference to what it is?

Ok. You put me to work
The vulnerability is patched in Moz1.7.5 and FF1.0, but not in NS7.2
I guess that the Spoofstick does not help after all..

 

http://secunia.com/multiple_browsers_window_injection_vulnerability_test/

 

I see that we agree. I gave the same link, and took it a step further, testing two of the browsers in question, plus NS7.2.
and, I will explain what I mean by my allusion to Spoofstick. Spoofstick indicates that it is an USA Today site. But only NS7.2 tells me after I am done that it is really controlled by Secunia.com. I do not get such warning with Moz1.7.5 or FF1.0

 

Westside

The vulnerabilities not patched in FF 1.0 here