| Forum Home | ||||
| PC World Chat | ||||
| Thread ID: 72303 | 2006-09-07 23:00:00 | Firefox - 655 defects and 71 potential security vulnerabilities | KiwiTT_NZ (233) | PC World Chat |
| Post ID | Timestamp | Content | User | ||
| 483211 | 2006-09-07 23:00:00 | Using Klocwork’s K7 static analysis tool, I examined the large and complicated code base of the popular open source browser, Firefox. Overall it is clear that Firefox is a very well written and high quality piece of software. Several builds were performed on the code, culminating in the final analysis of version 1.5.0.6. The analysis resulted in 655 defects and 71 potential security vulnerabilities. The Firefox team has been given the analysis results, and they will determine if or how they will deal with the issues. Only someone with in-depth knowledge and background of the Firefox code could judge the danger of a particular security vulnerability; therefore, I have not included more detailed information of these security vulnerabilities that could lead to the spreading of unfounded rumours of potential exploits. However, for those interested, I’ve provided more details of the defects below.LINK (www.g2zero.com) I wonder how many IE or other browsers would have, if they were also scrutinized to such an extent. I am sure some of these findings will be fixed in Firefox 2. I would prefer they delayed releasing version 2 until the most serious of these are also fixed. |
KiwiTT_NZ (233) | ||
| 483212 | 2006-09-08 01:33:00 | I found the comments posted by others, epsecially the coder guys, more interesting. Not that I use either browser anyway... |
pctek (84) | ||
| 483213 | 2006-09-08 03:17:00 | What was the count on lines of code in IE?..a million or so?...I dunnow..but I am sure that there's gotta be about...er....wild guess here: 700 or so weaknesses and/or bad code...right? | SurferJoe46 (51) | ||
| 483214 | 2006-09-08 11:06:00 | No software is perfect. A patch / new version fixes some bugs, but bring other bugs :):):) | developer (4447) | ||
| 1 | |||||