Mozilla is warning users and administrators following the discovery of a new flaw in its Firefox 3.5 browser.
The company said that the flaw exists in the browser's JavaScript tool within a component called 'just in time' (JIT.)
If exploited, the flaw could allow an attacker to remotely execute code on a targeted system.
Mozilla further warned that a working exploit has been publically released, increasing the risk of attacks occurring in the wild.
To prevent attack, the company has posted instructions for temporarily disabling the JIT component through the browser's about:config menu. Doing so will slow JavaScript performance, however.
Users can also reduce the risk of attack by running the browser in Windows' Safe Mode.
The Firefox flaw is the latest in what has been a string of high-profile browser exploits in recent days.
Last week Microsoft warned of a flaw in a video ActiveX plug-in that was actively being targeted in Internet Explorer, and yesterday the company gave word of a second vulnerable IE component, this time an Office plug-in, that was being targeted by attackers.
.jpg&h=140&w=231&c=1&s=0)
_(36).jpg&h=140&w=231&c=1&s=0)
iTnews Cloud Covered Breakfast Summit
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
Melbourne Cloud & Datacenter Convention 2026
iTnews Executive Retreat - Data & AI Edition
The 2026 iAwards
_(1).jpg&h=140&w=231&c=1&s=0)
