« Another Insecure ActiveX? You Betcha! | Main | Third-party apps create insecure Facebook »
Wednesday, July 15, 2009
Critical Firefox 3.5 Security Flaw
The newest Firefox, version 3.5, includes Tracemonkey, a new feature designed to speed up Javascript scripts. A flaw within Tracemonkey could allow attackers to remotely install evil software when users visit compromised Web sites.
A simple fix is available until the next patch fixes the vulnerability:
- Open up a new Firefox window and type ‘’about:config‘’ (without the quotes) in your browser's address bar
- In the ‘’filter‘’ box, type ‘’jit‘’ and a setting called ‘’javascript.options.jit.content‘’ will appear.
- If the setting is set to ‘‘true’’ it means the option is enabled.
- If it is, double-click on the setting. This should change the option to ‘’false‘’ disabling it.
Posted by Matthew Carrick at 12:05.00 PM EDT | Permanent Link
| Categories: Mozilla Firefox, Security Alerts, Virus-Trojan-Worm Alerts
| Categories: Mozilla Firefox, Security Alerts, Virus-Trojan-Worm Alerts