July 14, 2009, 12:14PM
'Highly Critical' Bug Bites Firefox 3.5
Comment 
Exploit code for a "highly critical" vulnerability in Mozilla Firefox has been released on the Internet, putting millions of Web surfers at risk of remote code execution attacks.
The vulnerability is currently unpatched, according to an advisory from Secunia.
The vulnerability is caused due to an error when processing JavaScript code handling e.g. "font" HTML tags and can be exploited to cause a memory corruption. Successful exploitation allows execution of arbitrary code.
It has been confirmed in Firefox version 3.5 but other versions may also be affected, Secunia said.
If you use Firefox, it's important to immediately disable JavaScript within the browser until Mozilla's security engineers can ship a fix.
Recommended Reads
Commenting on this Article is closed.
Today's Most Popular
- Adobe's Security Chief Talks About Driving Up The Cost of Exploits
- Twenty Something Asks Facebook For His File And Gets It - All 1,200 Pages
- New Tool Cracks Apple iWork Passwords
- Google: Bug Bounty Program Has Made Users Safer
- After Damaging Reports, Electronics Manufacturing Giant Foxconn Is Hacked
Most Commented Stories
-
Attackers Using Fake Google Analytics Code to Redirect Users to Black Hole Exploit Kit (7)
-
Flash With Sandbox in the Works for Firefox (4)
-
Apple Ships Huge Set of Patches for OS X (7)
-
Twenty Something Asks Facebook For His File And Gets It - All 1,200 Pages (55)
-
EU Asks Google to Delay Privacy Policy Changes (2)
Newsletter Sign-up
Take Our Poll
Follow Threatpost
 |  |  |  |
| Tumblr |
