Firefox has a nasty exploit, Mozilla encouraging users to upgrade...

    Firefox has a nasty exploit, Mozilla encouraging users to upgrade...

    Firefox has a nasty exploit, Mozilla encouraging users to upgrade...


    Posted: 07 Aug 2015

    A recent blog post by Mozilla security head Daniel Veditz outlined a particularly malicious exploit that was found embedded in an advertisement on a Russian news site. The exploit, first discovered by a Firefox user, could sift through your local files and upload them to a Ukranian server, all without you knowing.

    The vulnerability relied on exploiting Firefox's integrated PDF reader and, therefore, those versions which do not include the feature - the mobile version of the browser - were not affected. While the exploit did not include the execution of external code, it did allow for potentially violating users' privacy by searching through their personal files and uploading them to an external server. Additionally, once the payload was executed, all traces of the exploit were removed.
    Source
    labeeman's Avatar Posted By: labeeman
    07 Aug 2015


  1. Posts : 22,740
    Windows 10 Home x64
       #1

    Thanks for the news.. Right now I'm using 39.0.3
      My Computer


  2. Posts : 28,671
    Mint 21.3
    Thread Starter
       #2

    BunnyJ said:
    Thanks for the news.. Right now I'm using 39.0.3
    That fix came out yesterday.
      My Computer


  3. Posts : 2
    W 10 Pro
       #3

    I'm on 41 (Aurora,) is there any word about beta, and aurora being affected?
      My Computer


  4. Posts : 46
    64-bit 10240 10 Pro
       #4

    Firefox 39.0.3 Released today - Windows 10 Forums

    Maybe if someone would read what I post they would be informed..??:)
      My Computer


  5. Posts : 419
    Win 7 Pro/32, Win 10 Pro/64/32
       #5

    I'm already on Version 40.0+.

    For an exploit to be active, someone would have to target you specifically.
    Is anyone here that important? I doubt that I am.

      My Computer


  6. Lee
    Posts : 4,793
    OS X, Win 10
       #6

    TechnoMage said:
    I'm already on Version 40.0+.

    For an exploit to be active, someone would have to target you specifically.
    Is anyone here that important? I doubt that I am.

    . . .I thought you were. . .:)
      My Computer


  7. Posts : 19,516
    W11+W11 Developer Insider + Linux
       #7

    TechnoMage said:
    I'm already on Version 40.0+.

    For an exploit to be active, someone would have to target you specifically.
    Is anyone here that important? I doubt that I am.

    Nevertheless, it's a good idea to patch any holes found, besides, 40.0 is just around the corner.
      My Computers


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 13:18.
Find Us




Windows 10 Forums