EVERY SINGLE PASSWORD can be broken if you know how to do it.
You do not even have to find out what the password is.You can always just remove it and VIOLA!
A great example would be a password for Windows user account which is stored in hash code.In many cases it is almost impossible to find out the password from hash code since you cannot undo the hash code UNLESS if the password is so damn simple like "123" lol.So if the password is long and contains many different characters of ANY type,you cannot find out that password from the hash code.In that case you just delete the hash code and there you go...now there is NO password like it never was there in the first place and VIOLA!You can now login in the Windows user account and IF YOU WANT put your own NEW password...of course...IF you want lol.
I for example use a lot more complicated protections for my software which I am developing...and yes it does include HASH,but together with the hash it includes MANY other things too...such as encrypted hash using many encryption types,my own,hardware scanning and a lot more.In short...PASSWORD is just STEP 1 in my entire PROTECTION PROCEDURE.
(Yea I do overreact a lot I know lol
)!
So when I see so poor password protections like the one in Firefox,I just can't believe how easy it is to break those MASTER PASSWORDS.Since when people hear/read those words "MASTER PASSWORD",they automatically think that it is so damn secure...,but it's not.Sure there ARE master passwords which are designed GOOD and are well made and protected,but the one from Firefox is NOT good at all.
Hell I can break those "MASTER PASSWORDS" in BIOS if you want so doing the same thing inside of Windows is a peace of cake lol.
Unless if you do something crazy as I do lol...,but EVEN THEN you can always decompile a software and see the password or simply delete that part of the code,compile it back and VIOLA!No more password(s) is/are required lol.
Of course doing that is not easy if you are not really 100% sure that you know what you are doing.