New Firefox Vulnerability Pushes Latest Update
If you're a Mozilla Firefox user, there's another reason for you to update to the latest version of the upstart browser released last week.
Source: Internet NewsBuried in the list of Firefox security updates is a critical heap overflow issue that hit the public disclosure lists officially just today.
Security firm iDefense issued a public advisory today titled, "Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error." The vulnerability could allow an attacker to execute arbitrary code and/or crash the browser.
According to iDefense's security disclosure timeline, the vulnerability was reported to the Mozilla Foundation on Feb. 9, and Mozilla responded that day. "Coordinated" public disclosure was supposed to occur today.
The vulnerability involves the remote exploitation of a "design error" that could potentially allow a malicious remote miscreant to trigger a heap corruption.
0