A total of 13 vulnerabilities have been addressed

Aug 7, 2013 10:56 GMT  ·  By

Mozilla has released Firefox 23. Besides a few new interesting features, the latest variant of the popular web browser also comes with a number of security fixes.

A total of 13 security holes have been addressed. Of these, four are considered critical, including a buffer underflow when generating CRMF requests, a use-after-free mutating DOM during SetBody, and miscellaneous memory safety hazards.

An issue which allows CRMF requests to be used for code execution and XSS attacks is also considered critical.

Besides the four critical flaws, seven high-, one moderate-, and one low-impact vulnerabilities have been fixed in Firefox 23.

The high-impact security holes include a buffer overflow in Mozilla Maintenance Service and Mozilla Updater, a DLL hijacking flaw in the Firefox full and stub installers, and a privilege escalation through Mozilla Updater.

Users are advised to update their installations to protect themselves against cybercriminal attacks.

The complete list of security fixes is available on Mozilla’s website.

Download Firefox for Windows Download Firefox for Mac Download Firefox for Linux Download Firefox for Android