MS owned Firefox

[fishstix]

old news? idk Microsoft exposes Firefox users to drive-by malware downloads | Zero Day | ZDNet.com

Remember that Microsoft .NET Framework Assistant add-on that Microsoft sneaked into Firefox without explicit permission from end users?

Well, the code in that add-on has a serious code execution vulnerability that exposes Firefox users to the “browse and you’re owned” attacks that are typically used in drive-by malware downloads.

Can be disabled though

For Firefox users with .NET Framework 3.5 installed, you may use “Tools”-> “Add-ons” -> “Plugins”, select “Windows Presentation Foundation”, and click “Disable”.

[Cephius]

There was a pretty big slashdot article about this when it first came out, and I think they removed it as a "required" update and made it optional. Most people, including myself, disabled it anyway.

[Obiron]

I didn't know anything about this until a couple days ago when Firefox informed me that it had automatically disabled it (popped up a message about it being disabled due to known stability issues or something). Seems Firefox is aware and has a fix in place.

[fishstix]

oh, there's a post of this in the ffxi advanced section from 2 days ago, go figure

[kuronosan]

Yea, my Firefox automatically disabled it. Pretty underhanded of MS to do that. Maybe if their browsers weren't steaming piles of shit more people would use them.