Print
Mozilla has confirmed the presence of a critical vulnerability in Firefox 3.5. The vulnerability is nestled in the browser’s Just-in-time (JIT) JavaScript compiler – part of the new TraceMonkey engine – and can be used to execute malicious code. Hackers may lure gullible Firefox 3.5 users to websites containing code meant to exploit the flaw. While Mozilla burns the midnight lamp in finding a solution, you can simply disable the JIT. However, it must be noted that disabling the JIT will have an adverse effect on JavaScript performance.
Image Credit: FavBrowser
Comments are closed on this article
rseding91
July 16, 2009 at 2:27pm
Notice the lack of mocking FF.
If this was a IE bug but there would be loads of IE haters here to mock and flame it.
Jox
July 15, 2009 at 6:03pm
Does the NoScript add-on offer any protection against this exploit?
-Jox
opulent_rigs
July 16, 2009 at 12:53pm
Yeah, you can use it to only allow credible sites too use Java. it will help
I Jedi
July 15, 2009 at 5:51pm
And all will be well in the world of Firefox, the great geeks of the land said. So fear not, for we have nothing to fear but fear itself. Do as the article advice, people, and you'll be covered 110% of the way until a release update is made.
