Mozilla has released Firefox v3.6.12 in response to a zero day vulnerability that was discovered being actively exploited via the Nobel Peace Prize website. The exploit was targeting visitors to nobelpeaceprize.org in an attack some suggest was politically motivated.
The IP address involved in the attack traced back to a university in Taiwan. In October 2010, Chinese professor Liu Xiaob was awarded the 2010 Nobel Peace Prize. Liu Xiaob is currently serving an 11-year prison term in China for his writings in support of human rights.
Regardless of any motives behind its previous use, the flaw is highly critical and likely to quickly be exploited elsewhere. Firefox users are urged to update to the latest version as soon as possible. You can do so by directly downloading Firefox 3.6.12 or by choosing Help | Check for Updates from within the Firefox program.
Niciun comentariu:
Trimiteți un comentariu