Mozilla: Firefox vulnerable to malicious images

0
263

Mozilla has released a patch that eliminates a vulnerability in Firefox and Thunderbird should be sealed. According to the organization, was a specially crafted image is sufficient for a successful attack on users.

According to Mozilla contains libpng, the collection of code that browsers use for dealing with png images, a vulnerability that integer overflows. The result is that attackers are special images that can fabricate that they malware the system of victims smuggling. Simply displaying such images on a website in Firefox, or an e-mail in Thunderbird would be sufficient for a successful attack.

Mozilla has Friday version 10.0.2 of Firefox released, in which the CVE-2011-3026-vulnerability, Red Hat reported was fixed. Wednesday rolled Google already has a new version of its browser to the same leaks. The beveiligingsonderzoeker that the critical leak reported was 1337 dollars for Google, and the patch was part of the update to Chrome 17.0.963.56. It is unclear if the libpng vulnerability, in practice, abused and or more browsers are vulnerable.