Highly Critical Security Hole in Firefox 3.5

Secunia, is a Danish computer security service provider best known for tracking vulnerabilities in thousands of different kinds of software, has reported a highly critical security hole in Firefox 3.5. Here is how Secunia describes this vulnerabilty:

SBerry has discovered a vulnerability in Mozilla Firefox, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error when processing JavaScript code handling e.g. "font" HTML tags and can be exploited to cause a memory corruption.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 3.5. Other versions may also be affected.

Mashable.com has given a "temporary fix" for this hole while Mozilla is still working for a solution to this vulnerability:

Type about:config in Firefox‘ address bar, and set “javascript.options.jit.content” to “false.”

Labels: , , ,