Browser Security News

Mozilla Corp. has fixed a critical bug in the way the Firefox browser works with QuickTime media files. The flaw, which was reported last week by hacker Petko Petkov, gives attackers a way to run unauthorized commands on a victim’s PC. "This could be used to install malware, steal local data, or otherwise corrupt the victim’s computer," Mozilla said in a security advisory published Tuesday.

A July 2007 patch was supposed to take care of this type of problem, but Petkov showed how attackers could still run commands on a victim’s system by tricking a victim into opening a maliciously coded QuickTime media file. PC World - Mozilla Fixes QuickTime Flaw in Firefox