Browser Security News

The Mozilla Foundation is looking at disabling support for the Windows animated cursor format as a workaround for the ANI vulnerability that has left Windows systems open to exploit and complete takeover for the past week. Firefox users who use automatic update should get an update notification for the workaround. Users who have turned off update notification can use the "Check for Updates…" item on Firefox’s Help menu.

Microsoft posted a security bulletin with patches for the critical ANI flaw on Tuesday. Microsoft, along with Firefox and security researchers, has urged Windows users to patch immediately. Mozilla Vice President of Engineering Mike Schroepfer told eWEEK that the workaround may come in the next scheduled security release of Firefox. Security Watch - Browsers - Mozilla to Disable ANI Exploits’ Path of Entry