9 security defects have been found in Mozilla Suite and Firefox, enabling hackers to install malicious code or stealing confidential information on the user's computer.
Ian, senior technical consultant, of Internet Security, Pure Hacking, said that most of the defects are related to these two software to process JavaScript.
He said that there are some permission issues that enable the system to run JavaScript with higher privileges. They can be used by hackers to unblock them to ensure that JavaScript runs with certain permissions to hurt the user's computer.
Ian said that another problem can enable malicious scripts to access access to any memory, which may contain confidential information, in the worst case, may contain some individuals or login information.
According to French security event response group, the hacker can run malicious code on the user's system due to a defect in the Mozilla browser pop-up interceptor.
When the user accesses a web page that requires no plugins that requires no installed plugins, another defect in Firefox may be hacked.
French Safety Event Response Group said, if you use Firefox's PLUG-IN Finder Service to display the appropriate plugin from the Firefox, the "Manual Installation" function can be used to "perform the ability to steal confidential data or install malicious code".
1.7.7 Previous versions of Mozilla Suite and 1.0.3 all versions of Firefox have these defects.
Ian recommends that users disable JavaScript or download upgrade software from the website of the Mozilla Foundation.
