By Egan Orion
17 December 2008, 12:39

SMUG FIREFOX users snickering as they watch Microsoft's scramble to patch Internet Exploder's critical zero-day security vulnerability can wipe those smiles off their faces and get to updating. Mozzarella has just unleashed Firebadger 3.0.5, which fixes three critical security flaws in the leading open sauce web browser.

This latest release addresses eight Firefox security advisories in all. Three vulnerabilities are labeled critical flaws. Mozilla says those "can be used to run attacker code and install software, requiring no user interaction beyond normal browsing." Those are described as XSS vulnerabilities in SessionStore, XSS and JavaScript privilege escalation and Crashes with evidence of memory corruption.

Of the other five patches, one is labeled high impact and a second is tagged as moderate impact, whilst the other three fix minor, low impact vulnerabilities. The Firefox update service will offer to download version 3.0.5, or users can download the new release from Mozilla's website and install it manually.