A security vulnerability has been discovered in the javascript engine in several Mozilla browsers, including Firefox.The moderately critical flaw could be exploited to access potentially sensitive information and is caused by an error in the JavaScript engine, as a 'lambda' replace exposes arbitrary amounts of heap memory after the end of a JavaScript string.
The vulnerability exists in all versions of Firefox, Mozilla and Camino. Fixes are expected this week. in the meantime the flaw can be fixed by disabling javascript.
View: Mozilla Bug Report View: Full Article
News source: PC Pro