|
Vulnerability Mozilla Affected Mozilla prior to 0.9.2 Description 'QuantumG' found following. 208.191.35.126 - - [27/Jun/2001:21:07:21 -0400] "GET /~qg/billy.html HTTP/1.1" 200 333 "mailbox:///home/dustin/.mozilla/dustin/uo1voac3.slt/Mail/Mail/mail.ink-1.org/Inbox?number=29822904" "Mozilla/5.0 (X11; U; Linux 2.2.16-22 i686; en-US; rv:0.9.1) Gecko/20010608" So, we can see password entry here. Solution This bug is known and fixed. http://bugzilla.mozilla.org/show_bug.cgi?id=83038 This is fixed for mozilla 0.9.2. People using Mozilla < 1.0 should probably be aware that there are bugs remaining, and some of those bugs may affect the security of the application.