The new Firefox 16 was taken offline only a day after its release by its maker, Mozilla, after a major "security vulnerability" was discovered.
"Mozilla is aware of a security vulnerability in the current release version of Firefox. We are actively working on a fix and plan to ship updates tomorrow. Firefox version 15 is unaffected," The Age quoted Mozilla's Director of Security Assurance, Michael Coates, as writing in a blogpost.
According to the report, the security flaw in the world's third most popular browser is capable of allowing hackers and malicious sites to see a user's browsing history.
"The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL or URL parameters," said Coates.
However, the company said that only a "limited number of users are affected".
Despite assuring users that there is "no indication that this vulnerability is currently being exploited in the wild", the company recommended that users downgrade to Firefox 15.0.1 until a fix was released, the report said.
Earlier this morning a patch was released for the mobile version of Firefox running on Android smartphones, following which an update was made available to Windows, Mac and Linux users of the desktop browser, Firefox 16.0.1. It is recommended that users upgrade immediately, the report added.
No comments:
Post a Comment