Added on 16 Jul 2009(423 Views)
The first security vulnerability affecting the recently released Firefox 3.5 browser has been discovered. The security issue in question is a JavaScript vulnerability that could be exploited by a person with malicious intent to execute code on the targeted machine – the rating the security vulnerability has been given by Mozilla is “critical”.“A bug discovered last week in Firefox 3.5’s Just-in-time (JIT) JavaScript compiler was disclosed publicly. It is a critical vulnerability that can be used to execute malicious code. The vulnerability can be exploited by an attacker who tricks a victim into viewing a malicious Web page containing the exploit code. The vulnerability can be mitigated by disabling the JIT in the JavaScript engine,” explained Mozilla.
The workaround provided by Mozilla, disabling the JIT in the JavaScript engine as mentioned above, is described below:
- Launch Firefox 3.5 and in the address bar type in about:config
- In the filter box, at the top of the config editor, type in jit
- Double-click the line containing javascript.options.jit.content setting the value to false.
By enabling this workaround you will ensure your system’s protection, at least until the Mozilla Foundation rolls out a security update. That’s the upside; the downside is that you will experience decreased JavaScript performance. Consequently, once an update resolving this issue is released, you should disable the workaround. The steps for doing so are described below:
- Launch Firefox 3.5 and in the address bar type in about:config
- In the filter box, at the top of the config editor, type in jit
- Double-click the line containing javascript.options.jit.content setting the value to true.
The truth of the matter is that security is an issue that affects all browsers out there. But the good folks in the US State Department don’t care about that; all they care is switching from Internet Explorer to Firefox. The issue came up at a recent town hall meeting where one government employee asked US Secretary of State Hilary Clinton if they could start using Firefox instead of Internet Explorer (video here – head straight to 26:30).
Don't forget to:
RSSTags: Mozilla, Firefox 3.5, Security, JavaScript
Link to this article:
Add comment:
Software News
Chromium OS Goes Open-Source
This summer Google let the world know that it is working on a new operating system meant for the user that spends most of his time online. The operating system – aptly named Chrome OS because it is a natural extension...
This summer Google let the world know that it is working on a new operating system meant for the user that spends most of his time online. The operating system – aptly named Chrome OS because it is a natural extension...
20 Nov 2009
Office 2010 Beta Downloads Available to the Public
Earlier this week Redmond-based software giant Microsoft announced that Office 2010 became available for download as a Beta. The catch was that only ...
Earlier this week Redmond-based software giant Microsoft announced that Office 2010 became available for download as a Beta. The catch was that only ...
20 Nov 2009
Mozilla Releases: Firefox 3.6 Beta 3
The development process of the Firefox 3.6 browser is moving along rapidly. The first Beta version was released at the start of the month; Beta 2 was released about two weeks after Beta 1. About a week has passed since...
The development process of the Firefox 3.6 browser is moving along rapidly. The first Beta version was released at the start of the month; Beta 2 was released about two weeks after Beta 1. About a week has passed since...
20 Nov 2009
New Labs Feature for Gmail: Green Robot!
The software developers at Google have announced the release of a new Gmail Labs offering called Green Robot! This new offering is meant to improve the Gmail Chat user experience by letting the ...
The software developers at Google have announced the release of a new Gmail Labs offering called Green Robot! This new offering is meant to improve the Gmail Chat user experience by letting the ...
20 Nov 2009
Opera Mobile 10 Beta for Windows Mobile Is Out Also
Opera Software, the company that we all know for making the innovative and feature rich Opera web browser, has released Opera Mobile 10 Beta for Windows Mobile-powered devices. This release follows in the...
Opera Software, the company that we all know for making the innovative and feature rich Opera web browser, has released Opera Mobile 10 Beta for Windows Mobile-powered devices. This release follows in the...
19 Nov 2009
Beta Testing is Over, Stable Version of Trillian for iPhone Released
The focus so far has been on desktop version of this multiprotocol instant messaging software application, Trillian Astra (version 4.1). Today is time to switch focus away from the desktop version and onto something a bit more...
The focus so far has been on desktop version of this multiprotocol instant messaging software application, Trillian Astra (version 4.1). Today is time to switch focus away from the desktop version and onto something a bit more...
19 Nov 2009
Recommended Tools
Registry Booster 2010 Enhanced, deeper and faster error scan performance. Now also in 5 languages! Free Scan
Driver Scanner 2009
Fast and easy, it boosts performance by scanning for, downloading & installing driver updates
Fast and easy, it boosts performance by scanning for, downloading & installing driver updates
SpeedUpMyPC 2009
How fast is your PC really running? Turbo-charge your Internet and PC performance here
How fast is your PC really running? Turbo-charge your Internet and PC performance here
Nero Burning ROM
LimeWire Basic
Yahoo! Messenger
Winamp
Mozilla Firefox
eMule
BitComet
iTunes
Google Earth
uTorrent