‘Extremely Critical’ Bugs Found In Firefox

A pair of unpatched vulnerabilities in Mozilla’s Firefox Web browser — rated as “extremely critical” by one security firm — could allow an attacker to take control of a PC simply by getting a user to visit a malicious Web site, Mozilla said Sunday.

Because proof-of-concept code has been leaked — as were the vulnerabilities — before a patch was ready, Mozilla recommended that Firefox users either disable JavaScript or lock down the browser so it doesn’t install additional software, such as extensions” or themes, from Web sites.