Mozilla is to release a "high-priority fire drill security" update for its Firefox browser, after two flaws were discovered.
The patches will be released either 30 March or April as part of the next edition of the browser, Firefox 3.0.8 which is being rushed out because of the flaws.
The vulnerabilities at issue are the Pwn2Own flaw discovered at CanSecWest, as well as the XSLT bug. Mozilla described both as critical issues that allow malicious code execution. "These issues can be exploited by tricking a user into visiting a malicious web page hosting the exploit code," Mozilla said on its security blog.
"Both issues have been investigated and fixes have been developed which are now undergoing quality assurance testing," Mozilla added.
Mozilla faces renewed competition from Microsoft with the recent release of Internet Explorer 8, but Firefox still came out tops in our four-way browser beta test.
-
Using DeepSeek at work is like ‘printing out and handing over your confidential information’News Thinking of using DeepSeek at work? Think again. Cybersecurity experts have warned you're putting your enterprise at huge risk.
-
Can cyber group takedowns last?ITPro Podcast Threat groups can recover from website takeovers or rebrand for new activity – but each successful sting provides researchers with valuable data
-
Spanish spyware outfit uncovered, develops exploits for Windows, Chrome, and FirefoxNews Google was only able to discover the company after an anonymous submission was made to its Chrome bug reporting programme
-
Firefox 95 boosts protection against zero-day attacksNews Mozilla's browser now takes a more granular approach to walling off code
-
Mozilla to end support for Firefox Lockwise password manager
News Replacement service already lined up as browser specialist continues to streamline business
-
Firefox available on Microsoft Store for first timeNews Gecko-based browser arrives after Microsoft removes restrictions
-
Mozilla to cut 250 jobs as part of major coronavirus restructureNews The reorganisation has been made so the company can become faster, more innovative, and find more revenue streams
-
Why I’m leading a browser double lifeOpinion There are benefits to using more than one browser
-
Mozilla re-hires veteran Mitchell Baker to serve as CEONews The interim chair and CEO formally rejoins the organisation after Chris Beard stepped down in December 2019
-
Mozilla fixes two Firefox zero-days being actively exploitedNews Critical vulnerabilities allow attackers to execute arbitrary code or trigger crashes
