LastPass Fixes Serious Security Flaw in Chrome, Firefox Extensions

Password manager LastPass creates a workaround for a serious vulnerability affecting browser extensions in Chrome, Firefox, and Microsoft Edge.

Password manager LastPass has fixed a serious vulnerability in its browser extensions for Google Chrome, Mozilla Firefox, and Microsoft Edge. The flaw was discovered by Googles Tavis Ormandy, reports Network World. It could have been exploited to access extensions internal commands and steal passwords or personal information.
LastPass has put a workaround in place to provide protection from malicious codes and plans to fully fix the flaw in updated versions.
Ormandy later reported another vulnerability in the Firefox extension, which LastPass said was linked to the first. The problem was immediately fixed in a new version of the extension 4.1.36a released the next day.
No password changes are required of users at this time, say LastPass developers.
Read details on
Network World
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
LastPass Fixes Serious Security Flaw in Chrome, Firefox Extensions