Firefox 0-Day Vulnerability Just Published a Couple of Hours Ago!

Lable on 01/12/2016 - 00:34

Hi fellow OZB,

I just read about this zero day vulnerability on the Firefox browsers. The advice is to stay off using Firefox for now, at least until a patch is developed.

http://arstechnica.com/security/2016/11/firefox-0day-used-ag…

Computing

Related Stores

mozilla.org
mozilla.org

Comments

  • iridiumstem on 01/12/2016 - 00:39

    Damn, thanks for the heads up. Might move back to Chrome for a bit then.

  • Diji1 on 01/12/2016 - 01:00
    +1

    There are almost always unpatched holes in any browser - and that's the one's we know about. This isn't a reason to stop using Firefox although it's true that Chrome does have a better security record.

  • Steptoe on 01/12/2016 - 05:12
    +3

    Don't you run NoScript addon anyway?

    https://addons.mozilla.org/en-US/firefox/addon/noscript/

  • maybe a bot on 01/12/2016 - 08:20

    People still use that CPU-hog in 2016?

    Granted, Chrome hogs memory, but holy crap on my laptop it's slow as a wet week compared to Chrome

    • Kramo on 01/12/2016 - 09:29

      I use it when I need anything Flash intensive. Chrome's inbuilt version has some fun interactions that forcibly disable hardware acceleration. Performance of both of them is much the same for me, but I'm more used to Chrome's shortcuts at this point.

      • maybe a bot on 01/12/2016 - 10:01
        +1

        I have FF for the same reason - but Flash is permanently disabled in Chrome as I find it insecure and annoying

      • scupper on 01/12/2016 - 11:22

        You're using it in a worse way. Firefox doesn't have Flash built-in so you're using Adobe's plugin which is typically more vulnerable to attacks. Better to uninstall Adobe flash and run it within Chrome or Edge, which are more sandboxed.

  • felipe1982 on 01/12/2016 - 08:27

    "According to security researchers who analyzed the code, it exploits a memory corruption vulnerability that allows malicious code to be executed on computers running Windows"

  • Cropmy5 on 01/12/2016 - 11:05
    +3

    Mozilla has patched the vulnerability in latest Firefox update. Version 50.0.2
    https://www.mozilla.org/en-US/security/advisories/mfsa2016-9…

  • RJK on 01/12/2016 - 20:14

    Cheers for the information, will have to see if it affects Pale Moon too.

    It's smarter IMO to assume that any browser is vulnerable. I run script blockers, anti-exploit, and use software policies to prevent successful exploits.

Login or Join to leave a comment
Login Join