The two most popular browsers IE and Firefox released fixes for vulnerabilities on Wednesday.
The latest zero-day vulnerability stems from data binding bugs that allows hackers access to a computer’s memory space, allowing attackers to remotely execute malicious code as IE crashes, said a red-faced Microsoft yesterday.
Microsoft issued a security patch in response to reports that hackers have been targeting a critical vulnerability in its Internet Explorer browser.The flaw is believed to have already attacked over 2million Windows users.
The fix is recommended for users of IE5, IE6, IE7, and IE8 beta 2, you can download the patch form Microsoft Download center.
Meanwhile Mozilla has rushed out updates to plug a few critical holes in versions 2 and 3 of its popular open source Firefox browser . Among the fixes are several vulnerabilities which could be targeted in cross-site scripting attacks, as well as one which could be exploited to remotely execute code.
Firefox 3.0.5 fixes three critical security flaws in the browser, while 22.214.171.124 stitches four critical vulnerablities.
The 126.96.36.199 update signifies the end of security support for the browser,Additionally, Mozilla will be shutting down anti-phishing protections for the Firefox 2 due the Google ending support for the browser’s phishing site blacklist.
Mozilla is advising any users who haven’t already upgraded to the latest version of the browser to do so.