Radware Discloses Security Flaw in Firefox 3, Rates it Critical
According to Radware, a security company, it has detected a vulnerability that on exploitation could cause Denial-of-Service attack in Firefox 3, Mozilla's most recent Web browser program.
The bug, however, can be successfully exploited only if a computer user accesses an infected Website containing a malware, beyond which no other user interaction is required. Thus, a user, who browses such a site that exploits the vulnerability, can cause the browser to crash.
Besides, a freshly found exploit called Evilgrade can abuse automatic updaters to install malicious code on unsuspecting computers. The exploit, which poses as a real upgrade site, actually sends malicious program when the user's software expects a security patch. The malicious program could be anything - a Trojan ho...
» SPAMfighter News - 11-08-2008