David B
22 Mar 2010, 05:02 PM
http://news.bbc.co.uk/1/hi/technology/8580716.stm
The office warned that the Firefox vulnerability, confirmed by Firefox makers, could allow hackers to run malicious programs on users' computers.
A version of Firefox to be released at the end of the month will fix the bug.
A "beta" or test version of that release, Firefox 3.6.2, is already available but has not yet been fully tested.
The Federal Office for Information Security (BSI) has recommended that users stop using Firefox until the tested fix is released - in a move remarkably similar to the January announcement, in which France followed suit just days later.
Fox swap?
The Firefox vulnerability was confirmed by maker Mozilla last week on its security blog, when it promised that the next official release would address the issue.
It is only the current version, Firefox 3.6, that is affected, and given that prior releases have different vulnerabilities, reverting to an older version of the browser is ill-advised.
Switching to a different browser may not be a good solution either, said Graham Cluley, senior technologist at security firm Sophos.
Anyone know if this is anything NoScript won't cover? Or AV software? Spybot?
My plan is to upgrade when available, otherwise ignore.
David
The office warned that the Firefox vulnerability, confirmed by Firefox makers, could allow hackers to run malicious programs on users' computers.
A version of Firefox to be released at the end of the month will fix the bug.
A "beta" or test version of that release, Firefox 3.6.2, is already available but has not yet been fully tested.
The Federal Office for Information Security (BSI) has recommended that users stop using Firefox until the tested fix is released - in a move remarkably similar to the January announcement, in which France followed suit just days later.
Fox swap?
The Firefox vulnerability was confirmed by maker Mozilla last week on its security blog, when it promised that the next official release would address the issue.
It is only the current version, Firefox 3.6, that is affected, and given that prior releases have different vulnerabilities, reverting to an older version of the browser is ill-advised.
Switching to a different browser may not be a good solution either, said Graham Cluley, senior technologist at security firm Sophos.
Anyone know if this is anything NoScript won't cover? Or AV software? Spybot?
My plan is to upgrade when available, otherwise ignore.
David