Firefox 3.5's First Vulnerability "Self-Inflicted" - Slashdot

Slashdot

Firefox 3.5's First Vulnerability "Self-Inflicted" 156

Posted by CmdrTaco on Thursday July 16 2009, @10:25AM
from the that-sounds-all-emo dept.

CWmike writes "Mozilla has confirmed the first security vulnerability in Firefox 3.5, saying that the bug could be used to hijack a machine running the company's newest browser. A noted Firefox contributor called the situation 'self-inflicted' and said it was likely that the hacker who posted public exploit code Monday became aware of the flaw by rooting through Bugzilla, Mozilla's bug- and change-tracking database. The vulnerability is in the TraceMonkey JavaScript engine that debuted with Firefox 3.5, said Mozilla. '[It] can be exploited by an attacker who tricks a victim into viewing a malicious Web page containing the exploit code,' Mozilla's security blog reported Tuesday."

This discussion has been archived. No new comments can be posted.

Firefox 3.5's First Vulnerability "Self-Inflicted"

Search 156 Comments Log In/Create an Account

Comments Filter:

Unacceptable (Score:4, Funny)

by Anonymous Coward writes: on Thursday July 16 2009, @10:37AM (#28716585)

What do you mean there is a security exploit in a brand new version of a web browser? This is crazy, new versions of software should always be more secure then the previous versions.
Personally I'll be sticking with IE6, I never bought into this whole "Firefox" thing.

Share
twitter facebook
Yeah, right (Score:5, Funny)

by DoofusOfDeath (636671) writes: on Thursday July 16 2009, @10:38AM (#28716607)

'[It] can be exploited by an attacker who tricks a victim into viewing a malicious Web page containing the exploit code,' Mozilla's security blog reported [mozilla.com] Tuesday."
Oh sure, I'm definitely going to follow that link now.

Share
twitter facebook
Wimp! (Score:3, Funny)

by argent (18001) writes: <peter&slashdot,2006,taronga,com> on Thursday July 16 2009, @10:39AM (#28716615) Homepage Journal

I only use IE 5.5!

Parent Share
twitter facebook
Re:Foundation, Not a Company (Score:4, Funny)

by FudRucker (866063) writes: on Thursday July 16 2009, @10:44AM (#28716721)

or the Boogie Woogie Bugle boys from Company "B"

Right_Here [youtube.com]

Parent Share
twitter facebook
Re:MOD PARENT UP (Score:5, Funny)

by the way, what're you (591901) writes: on Thursday July 16 2009, @12:08PM (#28718057)

I've got at least a dozen non-default settings I've set in about:config. What's one more?
at least a baker's dozen?

Parent Share
twitter facebook
Re:Wimp! (Score:4, Funny)

by mcrbids (148650) writes: on Thursday July 16 2009, @12:44PM (#28718713) Journal

Pshaw. I use telnet, and read the native code. I don't even see the code anymore... Blonde, Brunette, Red-Head...
Reading sites that use SSL is a bit tricky, though.

Parent Share
twitter facebook
Re:Nice test for the open source community (Score:3, Funny)

by barzok (26681) writes: on Thursday July 16 2009, @01:15PM (#28719189)

It's called fdisk

Parent Share
twitter facebook
Re:Foundation, Not a Company (Score:3, Funny)

by brusk (135896) writes: on Thursday July 16 2009, @02:02PM (#28719969)

You mean that Extra Touch of Class Struggle.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

1208 commentsInternet Responds To Racist Article, Gets Author Fired
1051 commentsRand Paul Has a Quick Fix For TSA: Pull the Plug
998 commentsHybrid Car Owners Not Likely To Buy Another Hybrid
911 commentsMandatory Brake-Override Proposed For All Cars
737 commentsGimp 2.8 Finally Released

Go on, EMOTE! I was RAISED on thought balloons!!