Post permalink

• symonc symonc
  Oct 20, 2004 at 8:21 AM

  LarryOsterman wrote:

  This is the exact same reaction many on /. had

  
  
  Ow, that's harsh!
  
  I agree that the other browsers crashing is a *very* bad thing. It definitely indicates that the level of QA is far below that exerted for IE, which then inevitably leading to questions about the QA for every other aspect of that bit of software.
  
  My comment was meant to imply that the original report (not Sven's post) misrepresented the facts with a misleading shock headline - So-called secure browsers aren't! The assumption here is that they aren't secure (reinforced by the posting on BugTraq) when in fact they are (or at least haven't been proved not to be in this case).
  
  The fact that you can DoS a browser with bad markup is a serious issue, but not necessarily a security one (and it certainly isn't based on the information in the original report).
  
  As for the argument about whether malformed code should be rendered or not, I think I'll leave that well alone having nailed my colours to the mast already...

See more posts in thread…