<img style="float: right" src="http://www.iexbeta.com/images/news/logos/iexMozilla.gif">The Mozilla Project has issued a warning for a series of "highly critical" security holes in three of its core projects, including its flagship Firefox Web browser and the Thunderbird e-mail client.

The vulnerabilities, which also affect the Mozilla browser, could potentially exploited by malicious people to conduct cross-site scripting attacks, access and modify sensitive information, and compromise a user's system.

The open-source group has already fixed the bugs and are urging users to upgrade to Mozilla 1.7.3, Firefox 1.0PR and Thunderbird 0.8.

The news comes just days after the open-source project issued a preview release of Firefox 1.0, which includes an RSS reader that displays "live bookmarks, a new "Find" tool and an updated plug-in installer.

An advisory released by Secunia warned that the flaws carry a "highly critical" rating.

View: Full Article
News source: Internet News

I am NOT upgrading to a freakin' preview release of Firefox to get this fix!

why? i actually haven't had any probs with the PR

thanks i made sure i had it all updated

Well I'll admit that I have not tried the PR as of yet Jizzylax, but if it's that important then they should probably release Firefox 0.9.4.

Also, the reason I don't want to upgrade my main system is because I've fallen in love with the tabbed browser et al and now rely on it too much, so it needs to work. 'cause I don't want to have to go back to the multi-window IE.

only problem with the PR release is many extensions/themes aren't compatible.

apart from that runs fine here

I have to agree. I love PR1, with the exception of the Tabs options. But once the extensions are updated, it'll be great!