Firefox 3 release marred by security flaw


Firefox 3 release marred by security flaw

John-Paul Kamath

The third release of Mozilla's open source Firefox browser has been marred by the discovery of security flaw that could allow a hacker to run malicious code.

The discovery comes less than a day after the new browser was launched and affects previous versions of the browser too, said security experts Digital Vaccine Labs.

"Five hours after the official release of Firefox 3.0 on 17June, our Zero Day Initiative program received a critical vulnerability affecting Firefox 3.0 as well as prior versions of Firefox 2.0.x," the company said on its blog.

"Not unlike most browser-based vulnerabilities that we see these days, user interaction is required such as clicking on a link in e-mail or visiting a malicious web page."

The group said it had reported the vulnerability to the Mozilla security team, who were now working on a fix, but at the time of writing no patch was immediately available.

Mozilla said that the new version of FireFox had "raised the bar for security" upon its release and that because FireFox was designed as an open source product, it could leverage the experience of thousands of security experts around the globe.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy