Zero-Day Firefox Vulnerability Exploited to Distribute Trojan
-
Zero-Day Firefox Vulnerability Exploited to Distribute Trojan
-
-
Also of interest is Graham Cluley's blog, recommending NoScript:
Mozilla says it is working on a fix, but in the meantime Firefox users might be wise to turn JavaScript off and use the popular
NoScript addon.
NoScript is a great idea - I'd never use Firefox without it, and neither should you.
Firefox hit by critical zero-day vulnerability
-
No script is great
I run my Firefox on a standard user with UAC visualization and DEP enabled on it, along with no script, adblock etc etc.
Also of interest is Graham Cluley's blog, recommending NoScript:
Mozilla says it is working on a fix, but in the meantime Firefox users might be wise to turn JavaScript off and use the popular
NoScript addon.
NoScript is a great idea - I'd never use Firefox without it, and neither should you.
Firefox hit by critical zero-day vulnerability
Thanks for the info OP
-
-
Firefox 3.6.12 Fixes Critical Security Vulnerability
Now that was fast. The Firefox developers have updated the web browser only a day after the discovery of a
0-day vulnerability on the Nobel Prize website targeting Firefox 3.6 Windows installations. The critical vulnerability affected all Firefox 3.6 and 3.5 releases, and allowed the attacker to compromise a system without user interaction or warning messages.
The new versions of the browser are currently distributed to the release servers. It usually takes a couple of hours before the releases are pushed to the users who will receive an update notification once the new version becomes officially available.
...
-
So as long as I didn't go to that site I'm fine?
-
Cheers for this info... :)
-
-
Good information and this is a good thread. Thanks.
-
-
Just got the update request to 3.6.12 some 20 mins ago...used chrome in the meantime
With NoScript...the only thing that really bothered me, was that with every of the frequent updates, I was redirected to their page and that kept messing with my tabs.
Solution: in the URL bar enter about:config
search for a key named noscript.firstRunRedirection (if it's not there, create it)
and set it to false
-DG
-