Security researchers at Tipping Point have found a vulnerability in the new Firefox 3.0 web browser already, ranking the severity of the bug as 'high'.
Tipping Point has verified the bug and reported it to Mozilla, and Mozilla is still working on a fix and till the fix is released, the researchers won't share details about the problem.
Despite ranked the severity of the vulnerability as high, Tipping Point said users would have to click on a link in an e-mail or visit a malicious web page before being affected. The issue affects users of Firefox 3.0 as well as Firefox 2.0.
Tipping Point found out about the vulnerability through its Zero Day Initiative, which lets researchers earn cash by submitting new vulnerabilities to the company. Once Tipping Point validates the issue, it pays the researcher for the information and notifies the relevant software vendor of the technical details.
Mozilla did not respond to a request for comment.
Thursday, June 19, 2008
Subscribe to:
Post Comments (Atom)
Posts
No comments:
Post a Comment