Mozilla has issued a security update for Firefox ahead of the Pwn2Own hacking contest next week.
The update addresses 10 vulnerabilities in the browser, including eight labelled as 'critical' security risks. If exploited, the flaws could allow an attacker to remotely take control and execute code on a targeted system.
The update patches critical issues in Firefox's JavaScript and JPEG-handling components, as well as memory errors which could be used to trigger a crash.Such vulnerabilities will be in high demand next week when the CanSecWest security conference kicks off.
The conference will include the annual Pwn2Own contest in which security researchers race to perform exploits on fully patched systems and browsers, Firefox being among the targets.
The Firefox update also patches two lower-risk security flaws, one labelled 'high' risk and another 'moderate'.
Mozilla's update comes on the heels of a similar security update for the Google Chrome browser.
Like Firefox, Chrome will be among the targets for the Pwn2Own contest. In this year's event, Google is offering researchers an additional $20,000 reward for a working Chrome exploit.
No comments:
Post a Comment