Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Mozilla plans to patch a critical vulnerability affecting the latest version of its Firefox web browser next week. The flaw, first discovered by Russian security researcher Evgeny Legerov, could allow an attacker to remotely execute arbitrary code on an affected system. It will be fixed with the release of Firefox 3.6.2, scheduled for March 30, Mozilla said in a blog post. The vulnerability affects only Firefox 3.6, which was released in January. Secunia has classified the bug as “highly critical”, giving it 'four' out of five on its severity rating scale. If users do not wish to wait for the late March patch, they were advised by Mozilla to download the beta version of Firefox 3.6.2, which contains the fix. Legerov first disclosed the vulnerability on February 1 on a message board hosted by Immunity, a US-based security assessment and penetration testing vendor. Legerov provided few details about the bug, however. “It is a really cool bug," Legerov, founder of Moscow-based security research firm Intevydis wrote in the post. "It was an interesting challenge to find and exploit it. The exploit needs some work, but it was quite reliable in our testing.” Meanwhile, the German Computer Emergency Response Team has warned users against using Firefox until Mozilla has provided a fix for the bug. See original article on scmagazineus.com
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.