Firefox 3.6.2 Candidate Fixes Critical Security Vulnerability
Posted By Pallab De On March 21, 2010 @ 12:57 am In Internet Browsers | No Comments
Mozilla is preparing to release Firefox 3.6.2 [1], which will address a critical security vulnerability present in Firefox 3.6. The vulnerability in question, was reported by security researcher Evgeny Legerov last month. However, his initial reluctance to directly communicate with Mozilla prolonged the development time for the patch.
The vulnerability has been rated by Secunia [2] as highly critical and can by exploited by hackers to execute arbitrary code on the user’s system. It is not known if there are any in-the-wild exploits for this vulnerability.
Firefox 3.6.2 is scheduled to be released on March 30. Until then, security conscious users can download a nightly build from Mozilla’s FTP server [3]. Firefox 3.7 Alpha 3 [4] (or newer), as well as older versions of Firefox (pre 3.6 releases) are also not affected.
Article printed from Techie Buzz: http://techie-buzz.com
URL to article: http://techie-buzz.com/browsers/firefox-3-6-2-security-vulnerability.html
URLs in this post:
[1] Firefox 3.6.2: http://blog.mozilla.com/security/2010/03/18/update-on-secunia-advisory-sa38608/
[2] Secunia: http://secunia.com/advisories/38608
[3] Mozilla’s FTP server: https://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/3.6.2-candidates/build3/
[4] Firefox 3.7 Alpha 3: http://techie-buzz.com/browsers/firefox-3-7-mozilla-developer-preview-1-9-3-alpha.html
Click here to print.