Linked by Kroc Camen on Sat 17th Oct 2009 05:27 UTC
Microsoft Whilst it's not okay in Microsoft's eyes for Google to install a plugin into Internet Explorer, increasing the potential surface area of attack, when Microsoft do it to Firefox, it's a different matter. Now a security hole has been found in a plugin that Microsoft have been silently installing into Firefox.
Thread beginning with comment 389981
To read all comments associated with this story, please click here.
Battle of the Softwares
by mentormatt8 on Mon 19th Oct 2009 00:43 UTC
mentormatt8
Member since:
2009-10-19

"Along with .NET Framework 3.5 SP1, Microsoft have been silently installing a Windows Presentation Foundation Plugin that allows the embedding of XAML applications (an XML-based UI technology) in web pages, called XBAP (XAML Web App).

The exploit is drive-by, meaning that the victim only needs to be lured onto a web-page for the attack to be effective. The only safe thing to do until a patch is issued, is to open Firefox’s AddOn Manager and disable the WPF plugin. "

The battles of the softwares like these are really annoying and are not helping debug other issues. Because, who knows, was WPF plugin causing problems? Was it something else?
It took me two days, for example to figure out that ( http://annoyances-resolved.blogspot.com/2009/10/battle-of-two-softw... ) WPF did NOT cause this problem with Firefox.

Now that WPF is disabled, and the problem with Blinking Close, Minimize and Restore Button on Firefox reappeared http://annoyances-resolved.blogspot.com/2009/10/firefox-vista-close... ), I know WPF was not to blame.

Reply Score: 1