You might remember the “carpet-bombing” vulnerability discovered last month that affected Internet Explorer and Safari for Windows: Turns out Firefox was vulnerable, too. Security researcher Billy Rios found the problem, but disclosed it only to Mozilla. (Mac users remain unaffected.)
Mozilla found that Firefox could litter the desktop with files, and potentially contribute to the unwanted execution of malware using the same carpet-bombing technique.
Apple patched the Safari-end of the vulnerability with Safari 3.1.2.
[ via tuaw.com ]