What's new

Welcome to Offtopix 👋, Visitor

Off Topix is a well-established general discussion forum that originally opened to the public in 2009! We provide a laid-back atmosphere, and our members are down to earth. We have a ton of content, and fresh stuff is constantly being added. We cover all sorts of topics, so there's bound to be something inside to pique your interest. We welcome anyone and everyone to register and become a member of our awesome community.

Register now Log in
🎁

Member Interviews

Feel free to start a thread here! We'd love to ask you some questions and get to know you better. Can't wait to chat!

In the News

Share all current news stories here to inspire discussion and comments. Check here for engaging articles that spark curiosity.

Member Introductions

Welcome to Off Topix! We're excited to have you here. Take this opportunity to introduce yourself to our vibrant community and start connecting with others!

Firefox User? You Need To Update ASAP

Webster

Webster

Retired Snark Master
Administrator
Joined
May 11, 2013
Posts
24,887
Reaction score
13,613
Points
2,755
Location
Morganton, N.C.
Website
conversations-ii.freeforums.net
....here's yet another reason not to use Firefox...

mozilla-firefox-240515.jpg

(IBN Live) New Delhi: A major security flaw has been discovered in Mozilla’s Firefox web browser that could potentially compromise users’ sensitive files and upload them to servers in Ukraine. A Firefox user found an advertisement on a news site in Russia which was serving the Firefox exploit.

The company explains in its blog that the bug comes from the interaction of the mechanism that enforces JavaScript context separation (the “same origin policy”) and Firefox’s PDF Viewer. Mozilla’s products that don’t contain the PDF Viewer, such as Firefox for Android, are not vulnerable to the threat.

The security flaw does not enable execution of arbitrary code but allow injecting a JavaScript payload into the local file context; allowing for search and upload potentially sensitive local files.

The particular ad in question was looking for develop focused files on a users’ system. It affects both Windows and Linux users, but Mac users are not targeted by this particular exploit. The bug could potentially change passwords and keys in the developer focused files. Those who use ad-blocking software and special filters might have been protected too.

The company has issued a patch for the vulnerability and all Firefox users are suggested to update to Firefox 39.0.3. The fix has also been shipped in Firefox ESR 38.1.1.
Click to expand...
 
thanks for posting this
 
Use Opera.

tumblr_n288hdbdBI1t17f6qo6_500.jpg


:tup2:
 
i have ff but rarely use it as i use chrome the most...
 

Create an account or login to post a reply

You must be a member in order to post a reply

Create an account

Create an account here on Off Topix. It's quick & easy!

Register

Log in

Already have an account? Log in here.

Similar threads

DrLeftover
A cheerful note from Firefox:
Replies
4
Views
61
DrLeftover
DrLeftover
Webster
The Deserved Decline of Firefox
2 3
Replies
40
Views
1,335
Nebulous
Nebulous
Jazzy
Firefox has blocked all versions of Flash player
Replies
3
Views
241
DrLeftover
DrLeftover
Farfar
Chrome, Firefox, Safari and IE All Browsers Hacked at Pwn2Own Competition
Replies
4
Views
216
Sariki
Sariki
Webster
Firefox Facing Endangered Species Status?
Replies
11
Views
223
Webster
Webster

Welcome to Offtopix 👋, Visitor

Off Topix is a well-established general discussion forum that originally opened to the public in 2009! We provide a laid-back atmosphere, and our members are down to earth. We have a ton of content, and fresh stuff is constantly being added. We cover all sorts of topics, so there's bound to be something inside to pique your interest. We welcome anyone and everyone to register and become a member of our awesome community.

Register now Log in

Help

Forum user guide

Rules, Terms & Privacy Policy

Our forum usage rules

Exciting news! A new "Member of the Month" block is on the way, and you won’t want to miss it!
XenForo 2 Style [XGT] Yazılım ve web hizmetleri 2014-2024
Community platform by XenForo® © 2010-2024 XenForo Ltd.
© Offtopix Is A Noble Network Venture

Theme customization system

You can customize some areas of the forum theme from this menu.

System sensitive
Light mode
Dark mode

Manage theme options Manage theme colors

  • Theme customizations unavailable!

    Theme customization fields are not available to you, please contact the administrator for more information.

  • Choose the color combination that reflects your taste
    Background images
    Color gradient backgrounds
Back