- Jul 22, 2012
- 317
Mozilla has temporarily removed Firefox 16 from the current installer page after it found a security vulnerability in the new version of its browser, it said on Wednesday.
The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL (uniform resource locator) or URL parameters, Michael Coates, director of security assurance at Mozilla said in a blog post.
Mozilla does not however have any information that the vulnerability is currently being "exploited in the wild," he added. It is working on a fix and plans to ship updates on Thursday.
Firefox 16 has been temporarily removed from the current installer page and users will automatically be upgraded to the new version as soon as it becomes available, Coates wrote.
Firefox version 15 is unaffected, and as a precaution users can downgrade to version 15.0.1. Or they can wait until Mozilla's patches are issued and automatically applied to address the vulnerability, Coates said.
SOURCE
The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL (uniform resource locator) or URL parameters, Michael Coates, director of security assurance at Mozilla said in a blog post.
Mozilla does not however have any information that the vulnerability is currently being "exploited in the wild," he added. It is working on a fix and plans to ship updates on Thursday.
Firefox 16 has been temporarily removed from the current installer page and users will automatically be upgraded to the new version as soon as it becomes available, Coates wrote.
Firefox version 15 is unaffected, and as a precaution users can downgrade to version 15.0.1. Or they can wait until Mozilla's patches are issued and automatically applied to address the vulnerability, Coates said.
SOURCE