Firefox security hole

[Muderman24]

it was only a matter of time before this happened

Developers at the open-source Mozilla Foundation have confirmed that the latest version of their Web browsers have a security flaw that could allows attackers to run existing programs on the Windows XP operating system.

The flaw, known as the "shell" exploit, was publicized Wednesday on a security mailing list, along with a link to a fix for the problem. Updated versions of the affected software programs, which include the Mozilla, Firefox and Thunderbird browsers, have been released.

Developers said the flaw affected only Windows users, not computers running either the Macintosh or Linux operating systems. Like recent Internet Explorer vulnerabilities, this flaw only allows the attacker the ability to run an existing program and requires that security problems in other applications be exploited to gain further access.

The flaw can be used to pass a file extension to the operating system. Windows XP will then run the helper application corresponding to that file extension. The main threat comes from the ability of an attacker to pass parameters to exploit vulnerabilities in a specific helper application, which could give an outsider access to the system. A shell problem could also cause the computer to freeze.

Mozilla developers said that future versions of the Firefox Web browser would have automatic update notifications that would make it easier to notify users about security fixes.

[nkorterrorist89]

If i have ZoneAlarm, will it protect my computer?

[laMe]

So what should we do download the latest version of Mozilla, how do i do that?

[Muderman24]

If i have ZoneAlarm, will it protect my computer?

no

a fix has been realeased in the new updated version of Firefox browser 0.9.2

the final release for the Firfox browser is set for Sept.14
(if you people didn't know Firefox right now is a beta)