July 16, 2007

Firefox attack uses Internet Explorer

A new attack has been found in which Internet Explorer could be used to activate Firefox and run malicious code. It’s done through a Firefox protocol handler used to to execute ‘firefoxurl://’ commands. According to Vnunet, “If Internet Explorer is used on a page that tries to use the ‘firefoxurl://’ the browser will activate Firefox automatically and allow malicious code to be run in JavaScript.”


No comments: