Exploit code sends Mozilla scrambling to fix Firefox

I have just a couple minutes to post this before my lunch break is over but wanted to share this report by Ryan Naraine, ZDNet.com, about what is being referred to as a "Zero Day" security flaw.

"Mozilla’s security response team is scrambling to ready a patch for what appears to be a serious security flaw affecting its flagship Firefox browser.

The vulnerability, released alongside proof-of-concept code on several security sites, could lead to malicious code execution attacks if a Firefox user is lured to a Web site rigged with exploits. It affects all versions of the open-source browser, including the newest Firefox 3.0.7."

Read the complete report at Exploit code sends Mozilla scrambling to fix Firefox

References:

• Bug 485217 – Exploitable crash in xMozillaXSLTProcessor::TransformToDoc
• Exploit code sends Mozilla scrambling to fix Firefox
• Mozilla Firefox XSL Parsing 'root' XML Tag Remote Memory Corruption Vulnerability

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...