Mozilla's browser is affected by a critical vulnerability

Apr 6, 2007 07:50 GMT  ·  By

Because I'm sure there are a lot of Firefox fans all over the Internet, I must disappoint you and report another vulnerability discovered in the Mozilla browser that can allow an attacker to compromise an affected computer. No matter the version of the application, Firefox is affected by a highly critical security flaw due to a vulnerability discovered in Firebug, a Mozilla browser extension. If you're already using the add-on, then you should know that Firebug is a JavaScript debugger with useful features like script explorer, dynamic console and CSS viewer and editor.

Security company Secunia discovered the vulnerability in all the versions released before the current 1.02, adding that the flaw is highly critical and all the users must update to the latest version of the extension. "Firebug does not properly sanitize input passed to the "console.log()" function. This can be exploited to e.g. execute arbitrary script code within the "chrome:" context by tricking a user into visiting a malicious website," Secunia sustained in the security advisory.

As you know, Firefox is involved in one of the most popular Internet disputes for the most powerful browsers along with Microsoft's Internet Explorer. Because we were talking about the security of the Mozilla browser, the software giant's IE is now posing as a more secure application. Although the two applications are often brought in the spotlights for their security features, a study conducted by the security companies shows us the safest program.

According to the research, Microsoft managed to fix all the reported vulnerabilities of its browser, the company receiving no more than 15 reports. Although the number of the flaws discovered in Firefox was approximately 60, Mozilla managed to patch more than 80 percent of them so it seems like the battle continues with no front runner to win it.