14 DAY TRIAL // A high severity vulnerability was discovered in Mozilla's popular web browser. The flaw affects all Firefox 8.x versions and prior, allowing a remote attacker to execute arbitrary code.
Researchers from the Vulnerability Laboratories have just disclosed their findings, reporting that the security risks involved are estimated as being high.
“A remote URL Spoofing vulnerability has been discovered in Mozilla Firefox (all the versions). The vulnerability allows an remote attacker to execute remote code out of the software context. The bug is located when processing to link a specific website target to a new browser tab. Successful exploitation allows an attacker to redirect the target system via URL spoofing,” reads the report.
While the report claims that all the versions are affected, it also states that the “current stable release is version 8.0, released in November 8, 2011,” which means that the latest variant may not present the same issue.
The disclosure doesn’t mention anything about the flaws being told about to Mozilla.