Mozilla rushing out update for Firefox flaws
Mozilla hits the "fire drill" button, and rushes out an update for a pair of flaws.


Mozilla is to release a "high-priority fire drill security" update for its Firefox browser, after two flaws were discovered.
The patches will be released either 30 March or April as part of the next edition of the browser, Firefox 3.0.8 which is being rushed out because of the flaws.
The vulnerabilities at issue are the Pwn2Own flaw discovered at CanSecWest, as well as the XSLT bug. Mozilla described both as critical issues that allow malicious code execution. "These issues can be exploited by tricking a user into visiting a malicious web page hosting the exploit code," Mozilla said on its security blog.
"Both issues have been investigated and fixes have been developed which are now undergoing quality assurance testing," Mozilla added.
Mozilla faces renewed competition from Microsoft with the recent release of Internet Explorer 8, but Firefox still came out tops in our four-way browser beta test.
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
Freelance journalist Nicole Kobie first started writing for ITPro in 2007, with bylines in New Scientist, Wired, PC Pro and many more.
Nicole the author of a book about the history of technology, The Long History of the Future.
-
The race is on for Higher Ed to adapt: Equity in hyflex learning
Hyflex courses can improve student wellbeing and engagement, but only with meeting technology that leaves no one behind
-
Gen Z workers are keen on AI in the workplace – but they’re still skeptical about the hype
News Younger workers could lead the shift to AI, but only think it can can manage some tasks
-
Spanish spyware outfit uncovered, develops exploits for Windows, Chrome, and Firefox
News Google was only able to discover the company after an anonymous submission was made to its Chrome bug reporting programme
-
Firefox 95 boosts protection against zero-day attacks
News Mozilla's browser now takes a more granular approach to walling off code
-
Mozilla to end support for Firefox Lockwise password manager
News Replacement service already lined up as browser specialist continues to streamline business
-
Firefox available on Microsoft Store for first time
News Gecko-based browser arrives after Microsoft removes restrictions
-
Mozilla to cut 250 jobs as part of major coronavirus restructure
News The reorganisation has been made so the company can become faster, more innovative, and find more revenue streams
-
Why I’m leading a browser double life
Opinion There are benefits to using more than one browser
-
Mozilla re-hires veteran Mitchell Baker to serve as CEO
News The interim chair and CEO formally rejoins the organisation after Chris Beard stepped down in December 2019
-
Mozilla fixes two Firefox zero-days being actively exploited
News Critical vulnerabilities allow attackers to execute arbitrary code or trigger crashes