Firefox 3.0.1 fixes blended-threat vulnerability

Mozilla has updated Firefox to 3.0.1 (and 2.0.0.16 for those still using Firefox 2): both updates containing critical security and stability updates.

You might remember the “carpet-bombing” vulnerability discovered last month that affected Internet Explorer and Safari for Windows: Turns out Firefox was vulnerable, too. Security researcher Billy Rios found the problem, but disclosed it only to Mozilla. (Mac users remain unaffected.)

Mozilla found that Firefox could litter the desktop with files, and potentially contribute to the unwanted execution of malware using the same carpet-bombing technique.

Apple patched the Safari-end of the vulnerability with Safari 3.1.2.

[ via tuaw.com ]

Leave a Reply

Your email address will not be published. Required fields are marked *