TippingPoint reports Firefox 3.0 flaw
By secgeeks - Posted on June 19th, 2008
Tagged:
275
vote
TippingPoint said a researcher submitted a critical vulnerability affecting Firefox 3.0 to its Zero Day Initiative just five hours after Mozilla released the updated open-source browser Tuesday.
In a blog post Wednesday, TippingPoint said its researchers verified the vulnerability it in its lab and quickly reported the flaw to Mozilla’s security team. The flaw could allow an attacker to execute arbitrary code, but a user would need to click on a link in an email or visit a malicious web page, according to TippingPoint. The vulnerability also affects prior versions of Firefox 2.0.x.
The company, a division of 3Com, said it won’t release any other information about the vulnerability until a patch is available. Mozilla is working on a fix. TippingPoint’s Zero Day Initiative pays researchers for verified vulnerabilities.
Bookmark/Search this post with:
Trackback URL for this post:
http://secgeeks.com/trackback/1866
Recent comments
30 weeks 5 days ago
33 weeks 2 days ago
1 year 2 weeks ago
1 year 2 weeks ago
1 year 2 weeks ago
1 year 18 weeks ago
1 year 34 weeks ago
2 years 25 weeks ago
2 years 26 weeks ago
2 years 28 weeks ago