上一篇: Google Chrome Gestures Extension
Another Critical Firefox Vulnerability Emerges
It has been only a few days ago that the Mozilla Firefox team released an update for Firefox 3.5 to Firefox 3.5.1 that would close a recently disclosed critical security vulnerability that allowed attackers to execute arbitrary code on the attacked computer system. Earlier today another Firefox vulnerability was disclosed to the public that affects the latest version of Firefox. The vulnerability can be remotely exploited and uses an stack based buffer overflow that is triggered by an overly long string of Unicode data. It can lead to remote code execution or to crashes, freezes or the allocation of a lot of computer memory.
A proof of concept has already been created that demonstrates the vulnerability. No patch has been made available yet. Firefox users are encouraged to disable JavaScript until a patch is issued to avoid leaving their computer system vulnerable for the attack.
Users working with security add-ons like NoScript might consider their Firefox installation safe without disabling JavaScript. It is however theoretically possible to compromise websites that are in the whitelist of the add-on (if the whitelist is used) which would make the system vulnerable to this kind of attack.
JavaScript can be disabled in the Firefox options in the content tab.
- Download Google Chrome 4.0.211.7 Beta
- How to Open Obscure File Types with OpenWith.org Desktop Tool
- AVG Free Edition 8.5.406
- Download Feed Demon 3.0.0.36 RC11
- Download CCleaner 2.27.1070
- FreeSSHd A Free SSH Server For Windows
下一篇: How to Improve Internet Eplorer 8 Speed
Leave a Reply