While Microsoft releases patches for various vulnerabilities, including the two active zero day attacks, Firefox is being actively exploited.
According to the Mozilla Security Blog, there is a flaw in how Firefox handles JavaScript. We suggest you follow the instructions in that post to mitigate the flaw until they release a patch (which should be soon).
Not that we plan to post every time some piece of software is exploited or patched, but this series seems to… bring some balance to the Force.
Reader interactions
One Reply to “Microsoft Patched; Firefox’s Turn”
Just a point of clarification here. There is still active zero-day vulnerability (the OWC spreadsheet ActiveX control in IE).
-Swatne.