Just be careful about which sites you visit with Firefox until a patch is released I guess...anyway:
[quote]A flaw has been discovered in the popular open-source browser Firefox that could expose sensitive information stored in memory, Secunia has warned.
Firefox versions 1.0.1 and 1.0.2 contain the vulnerability, the security information company said in an advisory on Monday. The flaw stems from an error in the JavaScript engine that can expose arbitrary amounts of heap memory after the end of a JavaScript string. As a result, an exploit may disclose sensitive information in the memory, Secunia said.
"Unlike other browser flaws, this one is not subject to phishing or access to the system. But it can expose sensitive information from other Web sites you visited and the information you entered there," said Thomas Kristensen, Secunia chief technology officer.
[url=http://www.osnn.net/comments.php?shownews=11937#comments]Source[/url]
wow, I didnt see that coming. Nice find.
javascript.enabled=False. Thanks for the info.
Just when you thought you found a centralized browser...
Surely, there will be a fix for this real soon. I know that some pop-up windows have started to bypass Firefox's built-in pop-up blocker. Specifically one trying to act like an XP window about security and crap...
Firefox isn't perfect and neither is an other browser. Every piece of software has its holes. At least we know Mozilla will actually release a patch rather than say it's false information or something.