Windows 10: Firefox has a nasty exploit, Mozilla encouraging users to upgrade...


  1. Posts : 7,886
    Windows 10
       07 Aug 2015 #1

    Firefox has a nasty exploit, Mozilla encouraging users to upgrade...


    A recent blog post by Mozilla security head Daniel Veditz outlined a particularly malicious exploit that was found embedded in an advertisement on a Russian news site. The exploit, first discovered by a Firefox user, could sift through your local files and upload them to a Ukranian server, all without you knowing.

    The vulnerability relied on exploiting Firefox's integrated PDF reader and, therefore, those versions which do not include the feature - the mobile version of the browser - were not affected. While the exploit did not include the execution of external code, it did allow for potentially violating users' privacy by searching through their personal files and uploading them to an external server. Additionally, once the payload was executed, all traces of the exploit were removed.
    Source
      My ComputerSystem Spec

  2.    07 Aug 2015 #2

    Thanks for the news.. Right now I'm using 39.0.3
      My ComputerSystem Spec


  3. Posts : 7,886
    Windows 10
    Thread Starter
       07 Aug 2015 #3

    BunnyJ said: View Post
    Thanks for the news.. Right now I'm using 39.0.3
    That fix came out yesterday.
      My ComputerSystem Spec

  4.    07 Aug 2015 #4

    I'm on 41 (Aurora,) is there any word about beta, and aurora being affected?
      My ComputerSystem Spec


  5. Posts : 92
    64-bit 10240 10 Pro
       07 Aug 2015 #5

    Firefox 39.0.3 Released today - Windows 10 Forums

    Maybe if someone would read what I post they would be informed..??
      My ComputerSystem Spec


  6. Posts : 324
    Win 7 Pro/32, Win 10 Pro/64/32
       07 Aug 2015 #6

    I'm already on Version 40.0+.

    For an exploit to be active, someone would have to target you specifically.
    Is anyone here that important? I doubt that I am.

      My ComputerSystem Spec

  7.    07 Aug 2015 #7

    TechnoMage said: View Post
    I'm already on Version 40.0+.

    For an exploit to be active, someone would have to target you specifically.
    Is anyone here that important? I doubt that I am.

    . . .I thought you were. . .
      My ComputerSystem Spec

  8.    08 Aug 2015 #8

    TechnoMage said: View Post
    I'm already on Version 40.0+.

    For an exploit to be active, someone would have to target you specifically.
    Is anyone here that important? I doubt that I am.

    Nevertheless, it's a good idea to patch any holes found, besides, 40.0 is just around the corner.
      My ComputerSystem Spec


 

Related Threads
>>Many thanks to Kari for his input<< ZDNet warns of Windows 10 email scam; encrypts data for ransom http://www.zdnet.com/article/windows-10-scam-email-will-encrypt-your-files-for-ransom/?tag=nl.e589&s_cid=e589&ttag=e589&ftag=TREc64629f ...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 16:10.
Find Us