“OPEN SAUCE browser Firefox is so critically flawed that it is impossible to fix, according to two hackers.Mischa Spiegelmock and Andrew Wbeelsoi told the ToorCon hacker conference that the Javascript in the decade old code make it a doddle to cause stack overflows.
According to ZD Net, they think Firefox is impossible to fix without a total rewrite of key sections of the code. The ironically named Window Snyder, the Mozzarella Foundation’s security supremeo, said she was going to do a bit of investigating.”
Here is some more Tech News from around the web:
- Vista VIA Chipset driver @ VIA Arena
- ATI Steps Into Stream Computing @ ExtremeTech
- ATI AMD RD690 chipset comes in November @ The Inquirer
- AMD ‘roadmap’ shows 65nm Athlons coming this year @ The Inquirer
- Online gambling sites hit as US moves towards ban @ The Inquirer
- The GPU Advances: ATI’s Stream Processing & Folding@Home @ AnandTech
- How the Wii was born @ Ars Technica
- Cybercrooks add Windows Shell flaw to arsenal @ CNET
- Security pros patch older Windows versions @ CNET
- Hackers claim zero-day flaw in Firefox @ CNET
- EA Acquires Digital Illusions @ Strategy Informer
- KioskCD: An Alternative to WebTV @ OSWeekly
- Mac OS X Market Share Declines @ OSWeekly
- OS X in the Corporate World: Will it Ever Happen? @ OSWeekly
- SIP vs. Skype: Making the ‘Open’ Choice @ MadPenguin
- Microsoft: Ignore the Big Picture, Focus on Little Things @ CoolTechZone
- Wires: Fear the Nueva Wraptor @ DailyCE
- HP + Voodoo: The Back Story @ Digital Trends
- And Then There Were… @ ExtremeTech
- Nikon D50 6.1MP Digital-SLR @ Techgage
- Tech Myths B.U.S.T.E.D. Rev. 1.1 @ TechARP
- Fall IDF 2006 Wrap-up Coverage @ Legit Reviews
- C.O.D. is giving away a bunch of free STUFF
- Razer Copperhead High Precision Gaming Mouse Tempest Blue Giveaway @ Overclockers Online
They might be exaggerating a bit, but be careful around Java

The Inquirer links to a story on ZDNet, which claim that the Java flaw discovered in Firefox makes the entire browser irreparably insecure. Firefox’s Window Snyder beleives that that reaction is FUD, and that a patch can remove the Java vulnerability. Either way, I’d suggest avoiding strange Java for a bit.