News » Advisory describing vulnerability released for bug in Firefox 2.0.0.11 and Opera 9.5 beta-users should ensure they have updated

Advisory describing vulnerability released for bug in Firefox 2.0.0.11 and Opera 9.5 beta-users should ensure they have updated

Janine de Blois

The advisory, regarding an image file flaw, was released by ‘gynvael coldwind’, on Vexillium on the 16th of February. The Firefox patch to correct this and other security issues was released on the 7th of February.

The vulnerability is in the way the BMP files are handled. The code allows information from the heap-various data including users “favorites” and history, and other information-to be leaked. An attacker can send this information to a remote website by using tag and JavaScript. It is also possible to cause Remote Denial of Service.

Post a comment Cancel reply

Visited 277 times, 1 so far today

Email

See also:

Final Mozilla Firefox 4 beta is released

Opera Mobile 10 beta available on Nokia phones

Opera patches 'severe' attack defects

Firefox 3.0 is three times faster than IE7

Opera Mini 5 beta released