Posts Tagged ‘CrossFire’

Firefox Cross-Extension vulnerability discovered

Wednesday, April 6th, 2016

This is definitely a problem. Firefox appears to be working on the problem and although there are tools that help to detect vulnerability to extension re-use, at present there is no solution for preventing it.

Nine of the ten most popular Firefox add-ons, based on users, are vulnerable to extension reuse vulnerabilities that allow malicious extensions to leverage these vulnerabilities. Add-ons are one of the hallmarks of the Firefox web browser. The most popular Firefox add-ons are used by millions of users, and since the extension system in place does not limit add-on developers as much as on other platforms, some add miraculous things to the browser that are not possible elsewhere.

(more…)