http://informationweek.com/story/showArticle.jhtml?articleID=164300702
Mozilla's current browsers, including the popular stand-alone Firefox, are susceptible, again, to a seven-year-old vulnerability that could let attackers spoof Web sites, a security company says.Here's a brief history of other Mozilla bugs since Firefox 1 came out.
Extremely critical Firefox exploits (http://www.aota.net/forums/showthread.php?t=19476)
Netscape 8 disables XML (http://www.aota.net/forums/showthread.php?postid=133761#post133761)

I can't make the example exploit < http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/ > work on Mozilla 1.7.6 no matter what I try...

The exploit works on Firefox 1.04 (Mozilla 1.7.8) :blah:


(worked in IE6 till I applied the workaround)

It's a regression, I read. So the newest versions have the flaw, but somewhat older versions do not. Anyway, you are safe unless you browse trusted and untrusted sites at the same time in separate tabs or windows, IIRC.

No vulnerability here (Firefox 1.0.4). Maybs it's the tab settings I use. :dunno:

If you want a secure browser, unplug your computer.

Randall