Firefox Password Manager Vulnerability
An exploit has been found with the current version of Firefox password manager, using only javascript to retrieve stored passwords from your browser. The trick is simple but has its limitations on the part of the hacker.
This is how it goes. A lot of people just let firefox store all of their passwords since they are sure they’re the only ones who has access to their computers. So among the passwords stored are of course login to their blogger account on blogspot.com.
Okay so say you were tricked into opening another blog on blogspot.com and this blogger is up to no good. Mr Evil here knows HTML and javascript, so he posted a fake login form to login into blogspot (easily done, just copy from the actual login form).
