[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug

To: wac <waldoalvarez00@xxxxxxxxx>
Subject: Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
From: Andrew Farmer <andfarm@xxxxxxxxx>
Date: Sat, 29 Sep 2007 16:32:52 -0700

On 28 Sep 07, at 19:25, wac wrote:
> On 9/28/07, Jimby Sharp <jimbysharp@xxxxxxxxx> wrote:
>> How is this serious and is it related to security in any manner? If
>> not, please do not spam. :-(
>
>  Many bugs are security related (I would say all). How it is security
> related? Think. What happens if your bank calculates something  
> wrong and
> puts the lower in your account and the higher in another account?  
> Yes It
> might be little but what about a little many
> times? That could be done with javascript too. Then... you are not  
> safe
> anymore.

If your bank is doing financial calculations using Javascript in a
standard web browser, you have bigger things to worry about than
roundoff errors.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
  - From: Jimby Sharp

References:
- [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
  - From: carl hardwick
- Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
  - From: Jimby Sharp
- Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
  - From: wac

Prev by Date: Re: [Full-disclosure] Testing DidTheyReadIt.com
Next by Date: Re: [Full-disclosure] Testing DidTheyReadIt.com
Previous by thread: Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
Next by thread: Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug
Index(es):
- Date
- Thread