14 DAY TRIAL // We all know it, Firefox is one of the most popular web browsers ever designed. Moreover, some people say the Mozilla browser is the most secure application in its category, having safer features that Internet Explorer, the program built by the Redmond software giant, Microsoft. However, a new vulnerability has been discovered in Mozilla Firefox and, at the time of writing this article, no official solution has been released. SecurityFocus published an advisory entitled "Mozilla Firefox 'Basic Realm' Basic Authentication Header Spoofing Vulnerability", saying that it affects most versions of the browser including 2.0.0.11.
"Mozilla Firefox is prone to an HTTP basic authentication domain-spoofing vulnerability. Attackers may exploit this vulnerability via a malicious webpage to spoof the origin of an HTTP basic authentication dialog that the victim may trust. Attackers may find this issue useful in phishing or other attacks that rely on content spoofing. Firefox 2.0.0.11 is vulnerable; other versions may also be affected", SecurityFocus wrote in the notification.
Since there's no official solution to avoid a potential exploitation of the vulnerability, let's try to find one that may keep you on the safe side, until Mozilla rolls out a patch or an updated version of the browser. SecurityFocus writes that "To exploit this issue, an attacker must entice an unsuspecting user to visit a maliciously crafted webpage."
So, the attackers need a crafted webpage that would be able to take advantage of the Firefox vulnerability. Well, in case you're one of those addicted Firefox users and you don't want to abandon your browser, you can always avoid visiting malicious websites that may attempt to exploit the flaw.
If you want to download the latest (or just another) version of the Mozilla Firefox browser, you can take it straight from Softpedia using the following link.