CNET también está disponible en español.

Ir a español

Don't show this again

Mobile

Firefox fixes its IDN flaw

Firefox fixes its IDN flaw

The Mozilla Organization, makers of the Firefox browser, today released a workaround for the IDN buffer overflow vulnerability, first reported by security researcher Tom Ferris. The flaw relates to how Firefox handles really long URLs that contain dashes--it is theoretically possible for a bit of code to crash or possibly run malicious code on a vulnerable system. A malicious exploit for this flaw has not been distributed on the Internet, and therefore its overall threat to Firefox users is debatable. Nonetheless, users should be aware of it and should update their browsers when a patch becomes available.