Firefox gets patch for critical 0-day that’s being actively exploited

by
Dan Goodin
from Ars Technica - All content on (#4XMYX)
Firefoxlogo-800x440.png

Enlarge (credit: Mozilla)

Mozilla has released a new version of Firefox that fixes an actively exploited zero-day that could allow attackers to take control of users' computers.

In an advisory, Mozilla rated the vulnerability critical and said it was "aware of targeted attacks in the wild abusing this flaw." The US Cybersecurity and Infrastructure Security Agency said one or more exploits were "detected in the wild" and warned that attacks could be exploited to "take control of an affected system." The Mozilla advisory credited researchers at China-based Qihoo 360 with reporting the flaw.

No other details about the attacks were immediately available. Neither Mozilla nor Qihoo 360 responded to emails asking for more information.

Read 4 remaining paragraphs | Comments

index?i=zYldk7PNdFU:JQ7DzaLXT5c:V_sGLiPB index?i=zYldk7PNdFU:JQ7DzaLXT5c:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments