On Thu, Feb 12, 2009 at 04:59:49PM -0000, Patola wrote:
> Yay, right. I agree that is difficult to blame it on Firefox. But that
> does not mean that there's not a problem. The distribution should take
> steps to protects their users. It just happens that the combination of
> MIME types, browsers and wine can lead an user to compromise his/her
> system. Shouldn't this hole be closed?
>
> Couldn't the ubufox package include some programming that blocks wine
> programs from being executed? After all, I don't think it's common for
> an user to run windows programs from the web except in the case of
> viruses/worms.
>
I reopened your upstream bug and confirmed it. I think they didnt
really understand the request you made because you wrote it in a kind
of generic fashion ... lets see.
On Thu, Feb 12, 2009 at 04:59:49PM -0000, Patola wrote:
> Yay, right. I agree that is difficult to blame it on Firefox. But that
> does not mean that there's not a problem. The distribution should take
> steps to protects their users. It just happens that the combination of
> MIME types, browsers and wine can lead an user to compromise his/her
> system. Shouldn't this hole be closed?
>
> Couldn't the ubufox package include some programming that blocks wine
> programs from being executed? After all, I don't think it's common for
> an user to run windows programs from the web except in the case of
> viruses/worms.
>
I reopened your upstream bug and confirmed it. I think they didnt
really understand the request you made because you wrote it in a kind
of generic fashion ... lets see.
affects ubuntu/firefox-3.0
status triaged
I dont think its really severe, setting to medium
importance medium
- Alexander