From the Knowing is Better Than Not dept.:
The Vietnamese language pack for Firefox 2 contains inserted code to load remote content. This code is the result of a virus infection, but does not contain the virus itself. This usually results in the user seeing unwanted ads, but may be used for more malicious actions.
Everyone who downloaded the most recent Vietnamese language pack since February 18, 2008 got an infected copy. While we cannot determine the exact number of compromised downloads, there have been 16,667 total downloads of the Vietnamese language pack since November 2007, so we anticipate the impact on users to be limited.

Read More…
Source: Open Source Directory :: OSDir.com

The Hackers’ Nightmare is here!

Sweet! Delicious alpha (join the group to download from Files) works great in Firefox 3b5.

Read More…
Source: A Whole Lotta Nothing

The Hackers’ Nightmare is here!

An unpatched vulnerability in handling of JAR: protocol handler URL’s has been reported recently.
Information is available at GNUCITIZEN Blog. Link: Web Mayhem: Firefox’s JAR Protocol Issues.
Information was publicly disclosed by Petko D Petkov (aka pdp).
The issue was originally reported in Bugzilla document #369814 by Jesse Ruderman of Mozilla community. I.e. Mozilla security group is aware […]

Read More…
Source: Security Team

The Hackers’ Nightmare is here!

Mozilla Security Blog reported a security problem found within the Vietnamese language pack for Firefox 2.
The Vietnamese language pack for Firefox 2 contains inserted code to load remote content. …

Read More…
Source: HelpNetSecurity

The Hackers’ Nightmare is here!

Vietnamese pack infects Firefox users

Read More…
Source: Security Focus

The Hackers’ Nightmare is here!

Mozilla Updates for Multiple Vulnerabilities

Read More…
Source: US CERT

The Hackers’ Nightmare is here!

Mozilla Updates for Multiple Vulnerabilities

Read More…
Source: US CERT

The Hackers’ Nightmare is here!

Mozilla Firefox ParseFTPList Remote Denial of Service Vulnerability

Read More…
Source: Security Focus

FLEA-2008-0008-1 firefox

Read More…
Source: Security Focus

Foresight Linux Essential Advisory: 2008-0008-1 Published: 2008-05-08 Rating: Moderate Updated Versions: firefox=/foresight.rpath.orgatfl:1-devel//2/2.0.0.14-0.1-1 group-world=/foresight.rpath.orgatfl:devel//2/2.0.1-0.7-2 References: Description: A flaw has been found in previous versions of firefox’s JavaScript garbage collector. This issue is known to cause a Denial-of-Service via …

Read More…
Source: Full Disclosure