If you have not upgraded to Firefox and you use Internet Explorer together with firefox, Please upgrade ASAP. There is a lot of finger pointing going on, but one thing is clear: I.E allows executing other programs with un-escaped url thus permitting malicious code execution in other applications, including Firefox 2.0 < and Thunderbird.

More about this vulnerability you can read here.

The funny thing? Mozilla suggest a workaround – not using Internet Explorer. Microsoft suggests unregistering Firefox handlers for handling some protocols :).

Categories: Security

Giedrius Majauskas

I am a internet company owner and project manager living at Lithuania. I am interested in computer security, health and technology topics.


Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.