Download our in-depth report: The Ultimate Guide to IT Security Vendors
Mozilla has updated its flagship Firefox browser to version 126.96.36.199 with at least nine security issues fixed.
Among them is one for an issue that was trigged when user also had Microsoft's Internet Explorer installed as well. Remote code execution by launching Firefox from Internet Explorer is addressed by Mozilla Security Advisory 2007-23.
The flaw was first reported on July 10. It involves the "firefoxurl://" uniform resource identifier (URI) handler, which enables Firefox to call on other Web resources.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i Though Mozilla has fixed the flaw in Firefox 188.8.131.52, Mozilla's advisory noted that other Windows applications can be called in a similar way and also manipulated to execute malicious code.
"This fix only prevents Firefox and Thunderbird from accepting bad data," Mozilla stated in its advisory. "This patch does not fix the vulnerability in Internet Explorer."
Other critical bugs fixed include the following: