Bug in Mozilla and Netscape

Posted on Monday, September 16 2002 @ 9:58 CEST by Thomas De Maesschalck
Zdnet reports that there's a new flaw discovere d in both Mozilla and Netscape :
Netscape and other Web browsers based on the Mozilla development project contain a bug that leaks users' Web surfing data, according to a new report.

The bug reveals the URL of the page a user is viewing to the Web server of the site visited last. This allows a Web server to track where users go after they leave the site, even if the next Web address comes from a bookmark or is manually typed into the browser.
Hit "Read More" to view a few solutions for the problem...

  • Create a file user.js in your profile folder (the one with the pref.js file). For Windows users, the path is probably something like C:WINDOWSApplication DataMozillaProfilesDefault Userf9a1239a.slt. Put the following line in the file:
    user_pref("capability.policy.default.Window.onunload", "noAccess");
    This will stop the onunload handler from being activated.
  • Use a proxy that removes the HTTP referer header, such as Privoxy or The Proxomitron (Win32 only) or
  • Disable JavaScript

Loading Comments