A great flaw has been detected with the new browsers Mozilla 2 and Internet Explorer 7. This weakness can be used by hackers to get important information from internet users. Vital data such as user name and passwords can be easily acquired by these hackers.

The problem was detected by Robert Chapin and named it Reverse Cross Site Request vulnerability or RCSR. The problem was traced in Firefox’s Password manager Software. This works by automatically encrypting the username and password into another login page so if the hacker provides a fake login page, it could be tricked into supplying the said information into that site. The IE7 on the other hand is not as vulnerable as the Mozilla because it still checks the validity of the log in form before filling in the username and password.

The bad news is, there’s still no fix for this problem though a report has been given to Mozilla. Experts say that for the meantime the best defense would be to disable the Firefox Password Manager and install the Master Password Timeout extension.