Providing Free and Editor Tested Software Downloads

MajorGeeks.com - You want the Geek? You can't handle the Geek!

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

Opera One

Everything
you need.

Already
there.

AI assistant

Aria, built right in

Free VPN

No account needed

Ad blocker

Faster, cleaner web

Tab Islands

Grouped browsing

Useful sidebars

Make it yours

No Clunky Extensions Needed.

MajorGeeks Approved.

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. GS Auto Clicker

2. Smart Defrag

3. Macrium Reflect FREE Edition

4. K-Lite Mega Codec Pack

6. Microsoft Visual C++ 2015-2022 Redistributable Package

7. Sergei Strelec's WinPE

8. K-Lite Codec Pack Full

9. Visual C++ Redistributable Runtimes AIO Repack

10. McAfee Removal Tool (MCPR)

How Much Storage Space Are Your Installed Apps Using in Windows 11?

How To Reset and Fix the Settings App in Windows 11

How To Remove the Windows 11 Updated Start Menu

How To Download a Windows 11 ISO

How To Disable Drag Tray

How To Boot Into WinRE (Windows Recovery Environment)

How To Find the Installation Date of Apps

Recently Opened Files - How To Hide or Show Them In Jump Lists, File Explorer, and Start Menu

How To Change the Name of a Local or Microsoft Account

How To Remove OneDrive From the Navigation Pane in File Explorer

FireFox Extensions Liable to Allow Hackers Access to User Data

Posted by: Timothy Weaver on 04/08/2016 06:13 AM [ Comments ]

It has recently been discovered that a flaw exists in the way FireFox handles extensions that has the potential to expose millions of users to malicious code hidden.

Researchers from Northeastern University in Boston found that the flaw would allow hackers to stealthily execute malicious code hiding behind a seemingly benign extension, such as NoScript and Firebug, and steal data.

What happens is the flaw fails to isolate various browser add-ons. This allows them to connect to the capabilities of other popular third-party extensions.

The researchers wrote in a paper: "These vulnerabilities allow a seemingly innocuous extension to reuse security-critical functionality provided by other legitimate, benign extensions to stealthily launch confused deputy-style attacks."

Hackers could exploit an extension reuse flaw by developing their own add-ons that hide malicious code and tap into the legitimate functions of popular extensions.

Connecting to other legitimate extensions would allow a hacker to bypass Firefox’s security checks and extension vetting processes and gain access to a user's machine.

Because the extensions use elevated privileges, the hidden malicious code can be used to steal passwords, private browsing data and system resources.

Source: Computing.Co.

Comments

comments powered by Disqus

© 2000-2026 MajorGeeks.com

Powered by Contentteller® Business Edition