Mozilla Firefox 220.127.116.11 already vulnerable
Just two days after I posted about updating to the latest version of Firefox, there appears to be a vulnerability on the scene! 0x000000.com has apparently found a bug that allows a hacker to traverse the Firefox default directory through the “view-source” scheme!
What this translates to someone being able to see every single file within C:/Program Files/Mozilla Firefox/ when the appropriate vulnerability script is running on a website hosting the attack. When you really think about it, this is no big deal considering nothing very important resides in this directory anyway, but it is still a vulnerability that should not be there in the first place.
Expect the Firefox team to be releasing yet another update soon to come. Persons that utilize the NoScript add-on are the only Firefox users that are safe at the moment.