In the last period, the FireFox browser has been facing a lot of problems, the latest security holes and flaws staining the image of the invulnerable browsing solution.
For the fourth time in only three months, a new set of vulnerabilities, rated as critical, has been found. Sunday night, FireFox's developers launched a minor patch for the vulnerability pointed out by unknown programmers. Mozilla has promised that in a short
time it will release a solution which will render useless any type of attack based on that error.
But until that solution, Mozilla recommends all users to deactivate the JavaScript or to set the browser to prevent installing of additional software, like extensions and themes posted on various sites.
The announced vulnerability is the first to be rated "extremely critical" by the Secunia security company; this security hole allows the attacker to convince the user he is downloading files from sites belonging to Mozilla Foundation, like addons.mozilla.org or update.mozilla.org.
The foundation has already changed the automatic update systems to decrease the risk of exploitation. The main measure consists in the redirecting of the sites mentioned above to new addresses; the users have been announced to add these pages to the list of accepted sites. This change is intended to limit the exploitation, not the vulnerability.
To prevent users from deserting the browsing fox, Mozilla Foundation will release in the shortest time a security update called Firefox 1.0.4.
Find us on Google+
