ABSTRACT:
A new security flaw has been identified in the Firefox browser. Its exploitation allows bypassing the software’s security policy by allowing a web page to access trapped and steal potentially sensitive data on other websites consulted.
AFFECTED SOFTWARE:
Mozilla Firefox 41.0.1 and lower versions
RISK:
Medium
FIX:
The affected users should quickly install the new software version (41.0.2 or higher for Firefox) via the update function (button “Open menu” and then “About Firefox” “?” ) to secure their computer and prevent any hostile exploitation of this vulnerability by malicious individuals, viruses or other malicious programs.
ADDITIONAL INFORMATION:
-> Mozilla Foundation Security Advisory 2015-115 (in English)
-> Mozilla Security Blog – Firefox exploit found in the wild (in English)
-> FAQ: how to tell if this software is installed on my computer
-> FAQ : how to determine your software version number?
-> Free subscription to the letter Secuser Security to be informed by email of new vulnerabilities