Glaswegian

Five hours after Mozilla officially released Firefox 3.0, researchers found a vulnerability in the new browser.

Tipping Point has verified the bug and reported it to Mozilla, Tipping Point said on Wednesday.

Since Mozilla is still working on a fix, the researchers won't share details about the problem. Tipping Point ranked the severity of the vulnerability as high, but said that users would have to click on a link in an email or visit a malicious web page before being affected. The issue affects users of Firefox 3.0 as well as Firefox 2.0.

Once the problem is fixed, Tipping Point will publish an advisory on its website, it said.

Tipping Point found out about the vulnerability through its Zero Day Initiative, which lets researchers earn cash by submitting new vulnerabilities to the company. Once Tipping Point validates the issue, it pays the researcher for the information and notifies the relevant software vendor of the technical details.


http://www.techworld.com/security/ne...&NewsID=101961

__________________
Iain - Defender of the Haggis and all things Scottish.
I don't help by PM - post in the Forums.



Ad-Aware::SpywareBlaster::SpyBot::SpywareGuard::SnoopFree::AVG Free::HOSTS File::HijackThis::Donate::5 Steps For Infected PCs