Five hours after Mozilla officially released Firefox 3.0, researchers found a vulnerability in the new browser.
Tipping Point has verified the bug and reported it to Mozilla, Tipping Point said on Wednesday.
Since Mozilla is still working on a fix, the researchers won't share details about the problem. Tipping Point ranked the severity of the vulnerability as high, but said that users would have to click on a link in an e-mail or visit a malicious Web page before being affected. The issue affects users of Firefox 3.0 as well as Firefox 2.0.
Once the problem is fixed, Tipping Point will publish an advisory on its Web site, it said.
[ Firefox's major update scores big with unprecedented ease, snappier performance, and sensible security features. Read the Test Center's full review. ]
Tipping Point found out about the vulnerability through its Zero Day Initiative, which lets researchers earn cash by submitting new vulnerabilities to the company. Once Tipping Point validates the issue, it pays the researcher for the information and notifies the relevant software vendor of the technical details.
Mozilla did not respond to a request for comment.
Mozilla launched its newest browser on Tuesday along with a marketing stunt that went a bit wrong. The company announced that it wanted to set a Guinness World Record for the largest number of software downloads in a 24-hour period. However, the volume of downloads crippled Mozilla's site , and so customers in the U.S. couldn't begin downloading the software until two hours later than expected. Still, Mozilla said it logged more than 8 million downloads within 24 hours. There is currently no record for number of software downloads in a day, but Mozilla must now wait for review of the stunt by Guinness officials.
This whitepaper explains the terminology and concepts behind Data Replication technologies and establishes some sizing rules through worked examples. Learn the new paradigm in disaster tolerance—protect data anywhere.
Download now »
Server virtualization is a popular option for dealing with mounting datacenter costs. Another equally promising approach is the use of an Application Delivery Controller. Citrix NetScaler provides a low-cost way for organizations to reduce their server count and accrue cost savings from a reduction in space, cooling, power and personnel.
Download now »
The emergence of WLANs has created a new breed of security threats to enterprise networks.
Included in HP ProCurve WLAN solutions is security technology that alleviates threats from WLANs through:
* Monitoring wireless activity inside and out of the enterprise
* Classifying WLAN transmissions into harmful and harmless
* Preventing transmissions that pose a security threat to the enterprise network
* Locating participating devices for physical remediation
Effectively address data protection challenges, implementing solutions that help store and protect business–critical data while cutting costs and improving efficiency and reliability.
Download now »
Sign up to receive Applications Resource Alerts
Recommend This
