http://www.efluxmedia.com/content/news/news_7104.jpgThe not profit Mozilla Foundation, which administers the open source Firefox web browser has patched a critical hole that could enable Microsoft's Internet Explorer to infect users' computers with malware by launching a Firefox session from a malicious website. However, Microsoft has yet to issue a fix for the bug which still exposes IE users to malware if they visit a bad website.


According to Mozilla Foundation Security Advisory 2007-23 , "the vulnerability is exposed when a user browses to a malicious web page in Internet Explorer and clicks on a specially crafted link. That link causes Internet Explorer to invoke another Windows program via the command line and then pass that program the URL from the malicious webpage without escaping the quotes. Firefox and Thunderbird are among those which can be launched, and both support a "-chrome" option that could be used to run malware."

:source: Source: http://www.itwire.com.au/content/view/13592/53/
:view: Homepage: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.5

Just Updated :D

Just Updated :D



Mine too , thats why I posted in case some don't auto update . Thought it was strange that FF is now plugging Microsoft's security holes too ? :lol:

thanks, just updated!

Mine never auto updated... and never has. :frusty:

thanks for the news flash, mine didnt auto update!
all done now

Mine never auto updated... and never has. :frusty:
Mine used to be like that.

Uninstalled, reinstalled and it was fixed. I think it's dependant on the version you did a clean install from.

<3 Firefox. Seriously, its never given me any trouble. Ie on the other hand... the only reason i keep it is because some sites dont support ff, which is stupid. :P