Yet Another Security Flaw Hits Firefox 3.5 Web Browser
Not long after the eagerly-anticipated 3.5 release, a major security vulnerability was found -- a flaw that could have allowed shady Internet sites to infiltrate your computer and, possibly, install spyware. That flaw was patched last week, but now, just a few days later, another security hole has been found. It's called the "Unicode Data Remote Stack Buffer Overflow Vulnerability," and, as of now there's no fix from Mozilla.
Should you be worried? Probably not, as it's unlikely that more than a handful of sites are using this exploit, and they're surely relegated to the darkest corners of the Web. This is really just more of a black eye for the browser, which was pledged as a more secure alternative to Microsoft's Internet Explorer. Still, you should always be careful and be wary before you go to random sites you've never heard of -- and, when Firefox prompts you about an important security update in a day or two, you'd best install it. [From: SecurityFocus, via DownloadSquad]