Bug hunters make short work of Firefox

By

Security researchers are wasting no time in prodding Firefox 3 for possible security holes..

Bug hunters make short work of Firefox
Just five hours after the browser made its public debut, the first remote code execution vulnerability was reported.

Security firm Tipping Point revealed on Wednesday that it received the report via its Zero Day Initiative service shortly after the browser made its much-publicized debut.

The company is not currently releasing the name of the researcher who discovered the flaw, nor is it disclosing any details on the vulnerability until a patch is prepared. However, the flaw is categorized as a critical vulnerability that could allow an attacker to remotely execute code on a user's computer.

Tipping point said that it had sent the report to Mozilla and that developers were currently working on a fix for the flaw. The company plans to disclose further details on the nature of the vulnerability once a patch has been issued.

No attacks targeting the vulnerability in the wild have been reported.

Security firms F-Secure and Secunia both recommend that users mitigate risk from the vulnerability by following best practices such as avoiding suspicious links and steering clear of untrusted sites.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
bugfirefoxhuntersmakeofsecurityshortwork

Sponsored Whitepapers

Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt

Events

Most Read Articles

Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack
Home Affairs officer accessed data on "friends and associates"

Home Affairs officer accessed data on "friends and associates"
Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks
Sportsbet recruits 'security champions' in shift-left strategy

Sportsbet recruits 'security champions' in shift-left strategy
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?