Mozilla Details Firefox Security Flaw
15 Comments
Mozilla disclosed Monday that it had opened up a vulnerability with a previous security fix for its Firefox, Seamonkey, and Thunderbird clients. According to an advisory issued Monday, a new JavaScript issue was introduced that would allow coding from Web content to be exploited to execute arbitrary code.
Only Firefox and Seamonkey are affected by the new flaw. A patch would need to be applied as disabling JavaScript does not protect against the problem, Mozilla said. Upgrading to either Firefox 1.5.0.10 or 2.0.0.2, or Seamonkey 1.0.8 and 1.1.1 would also address the issue. Those releases were made available in late February.