Sunday, May 08, 2005

Firefox users should disable automatic software installation

Mozilla Arbitrary Code Executation Security Flaw - MozillaZine Talkback

There's a big, nastly, ugly bug in Firefox/Mozilla. At least as bad as the many IE bugs Microsoft routinely patches. Until a fix is out disable automatic software installation:
The Secunia advisory suggests disabling JavaScript as a workaround; however, simply disabling software installation (Web Features panel of the Options/Preferences window in Firefox 1.0.3 or the Content panel in the latest trunk builds) eliminates the problem.

No comments: