Posted on
October 12th, 2012

Vulnerability found in Mozilla Firefox browser upgrade

Following the discovery of security vulnerability, the most recent version of Mozilla’s Firefox browser has been taken offline.

Although the download was taken offline within 24 hours of being released, it is believed a number of users had already upgraded to version 16.

Whilst users who had upgraded wait for a fix to be released by Firefox developers, they were advised to downgrade to the previous release.

A spokesperson for Mozilla said the vulnerability allowed “a malicious site to potentially determine which websites users have visited” and that only a “limited number of users are affected” The UK spokesperson also confirmed that no users had been automatically upgraded to the new version.

Michael Coates, Mozilla’s director of security assurance posted on his blog that a fix was being worked on.

“At this time we have no indication that this vulnerability is currently being exploited in the wild” he added.

“Firefox 16 has been temporarily removed from the current installer page and users will automatically be upgraded to the new version as soon as it becomes available.

“As a precaution, users can downgrade to version 15.0.1. Alternatively, users can wait until our patches are issued and automatically applied to address the vulnerability.”

With over 450 million users around the world, it is believed that Firefox was one of the three leading web browsers, with Google Chrome and Microsoft’s Internet Explorer being their main competitors.

< Back to Blog