Oh, Windows...where would we be without you?.....
Basil Chupin
blchupin at iinet.net.au
Wed Oct 27 10:47:03 BST 2010
Hackers plant Firefox 0day on Nobel Peace Prize website
Malicious hackers have exploited an unpatched vulnerability in the
latest version of Firefox to attack people visiting the Nobel Peace
Prize website, a Norway-based security firm said on Tuesday.
...........................
He said the attack exploited a race condition vulnerability in Firefox
to force end users to install malware his firm has dubbed Belmoo
<http://norman.com/security_center/virus_description_archive/129146/>.
The Windows executable was created on Sunday and attempts to connect to
several internet addresses, according to his analysis.
..................................................
Hours after the reports surfaced, Mozilla said it would issue a fix as
soon as possible
<http://blog.mozilla.com/security/2010/10/26/critical-vulnerability-in-firefox-3-5-and-firefox-3-6/>.
In the meantime, users can protect themselves by disabling JavaScript
altogether or installing the NoScript extension that allows users to
control which websites are permitted to run JavaScript.
http://www.theregister.co.uk/2010/10/26/firefox_0day_report/
--
"Ning Yu displayed his wisdom while the country followed System, but when it did not, he acted stupid. His wisdom is achievable by others, his stupidity is not."
Confucius
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/sounder/attachments/20101027/427c995e/attachment-0001.htm
More information about the sounder
mailing list