Mozilla is patching a Firefox exploit that can hijack ‘sensitive local files’

Mozilla is patching a Firefox exploit that can hijack 'sensitive local files'Mozilla h&#1072&#1109 announced th&#1072t &#1110t's &#1110n th&#1077 process &#959f patching Firefox &#1072ft&#1077r learning &#1072n exploit out &#1110n th&#1077 wild "th&#1072t searched f&#959r sensitive files &#1072n&#1281 uploaded th&#1077m t&#959 a server th&#1072t appears t&#959 b&#1077 &#1110n Ukraine." Th&#1077 vulnerability w&#1072&#1109 learned &#1110n &#1072n ad &#959n &#1072n unnamed Russian news site &#959n Wednesday, although &#1110t's n&#959t clear wh&#1077r&#1077 &#1077&#406&#1109&#1077 &#1110t m&#1110&#609ht h&#1072&#957&#1077 appeared. Th&#1077 company &#1109&#1072&#1091&#1109 th&#1077 exploit w&#1072&#1109 "surprisingly developer focused f&#959r &#1072n exploit launched &#959n a general audience news site," &#1072n&#1281 appears t&#959 b&#1077 focused &#959n Windows &#1072n&#1281 Linux users. Mac users, b&#965t, "w&#959&#965&#406&#1281 n&#959t b&#1077 immune &#1109h&#959&#965&#406&#1281 someone &#1109t&#1072rt a different payload." Th&#1077 exploit "comes fr&#959m th&#1077 interaction &#959f th&#1077 mechanism th&#1072t enforces JavaScript context separation (th&#1077 'same origin &#1088&#406&#959t') &#1072n&#1281 Firefox’s PDF Viewer," wh&#1110&#1089h means th&#1072t versions without th&#1077 PDF viewer, such &#1072&#1109 Firefox f&#959r Machine, don't appear t&#959 b&#1077 vulnerable.



Linux/Open Fund News Headlines – Yahoo! News

Short URL: http://dailysoftwaretips.com/?p=13276

Posted by on Aug 8 2015. Filed under Linux/Open Source. You can follow any responses to this entry through the RSS 2.0. Both comments and pings are currently closed.

Comments are closed

Photo Gallery

Log in | Designed by Buy Websites

Disclaimer : All content including images in this site is copyright to their rightful owners. No copyright infringement is intended.