Wednesday, July 15, 2009

Mozilla Firefox 3.5 Vulnerability


US-Cert announce yesterday that FireFox 3.5 has a critical vulnerability that could allow a remote attacker to execute malicious code. Mozilla is currently working on a fix.

Below is from US-CERT

US-CERT is aware of reports of a vulnerability affecting Mozilla Firefox 3.5. This vulnerability is due to an error in the way JavaScript code is processed. Exploitation of this vulnerability may allow an attacker to execute arbitrary code. Additionally, exploit code is publicly available for this vulnerability.

US-CERT encourages users and administrators to disable JavaScript as outlined in theSecuring Your Web Browser document to help mitigate the risks associated with this vulnerability.

US-CERT will provide additional information as it becomes available.

See http://www.us-cert.gov/current/index.html#mozilla_firefox_3_5_vulnerability

and

http://www.informationweek.com/news/internet/security/showArticle.jhtml?articleID=218500486&cid=RSSfeed_IWK_All

No comments:

Post a Comment

Windows 7 - STOP 0x0000007B (0xFFFFF880009A97E8 0xFFFFFFFFC0000034 0x0000000000 0x0000000000)

If you encounter STOP 0x0000007B (0xFFFFF880009A97E8 0xFFFFFFFFC0000034 0x0000000000 0x0000000000) blue screen of death. This is very like...