| All browsers vulnerable to new exploit which hijacks popups |
| Posted by: AceBHound on Dec 9th, 2004 12:35 PM |
 It appears Firefox is not as invulnerable to annoying hijacking as some people thought. A website can inject content into a popup window opened by another website if the name of the popup window is known. Mozilla, IE, Opera, Safari, and Konqueror have all been reported as having this "vulnerability". As a programmer, I'm not really sure why this is a huge surprise.. this is just how popup windows work currently. If browser companies can come up with a fix, you can bet it's going to take years of support calls and angry clients/customers if coding adjustments or browser upgrades need to take place. Some users have disabled JavaScript entirely because of it's "bad rep", and this will surely cause more to follow. With a technology that's used so widely on websites, it will be interesting to see how the browser companies respond. |
View More Techdose Articles