Serious Flaw Found in Firefox for Linux
Secunia warned on Tuesday that critical vulnerabilities within the Linux and Unix versions of Firefox could allow an attacker to easily execute shell commands on a user's system. Mozilla responded on Wednesday by issuing version 1.0.7 of the browser that addresses the flaw.
The vulnerability is known to affect Firefox version 1.0.6 on Fedora Core 4 and Red Hat Enterprise Linux 4. Secunia rates the issue "extremely critical," which is reserved for "remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild."