The only safe thing to do until a patch is issued, is to open Firefox’s AddOn Manager and disable the WPF plugin.
The exploit is drive-by, meaning that the victim only needs to be lured onto a web-page for the attack to be effective. NET Framework 3.5 SP1, Microsoft have been silently installing a Windows Presentation Foundation Plugin that allows the embedding of XAML applications (an XML-based UI technology) in web pages, called XBAP ( XAML Web App). Now a security hole has been found in a plugin that Microsoft have been silently installing into Firefox.Īlong with.
Whilst it’s not okay in Microsoft’s eyes for Google to install a plugin into Internet Explorer, increasing the potential surface area of attack, when Microsoft do it to Firefox, it’s a different matter.
0 kommentar(er)
