Mozilla Firefox , the most widely used web browser and know to every common , has been found with a critical bug that allows data leak and password stealing .
Hackingloops recommends you to update your Firefox browser without any delay and make sure you have firefox version 39.0.3 .
Data theft is just what Mozilla warned about in a blog post published on 06 August 2015, when it announced a critical update for Firefox.
This bug has been known to lead to information disclosures which means that it leads to security holes that allow confidential information leakage and password stealing and even Identity theft .
However this bug is not known to cause Remote Code Execution that allows the attacker to implant a malware on your computer without getting noticed and any popups .
Firefox PDF Bug
However the bug is not known to allow any RCE (Remote Code Execution)that will enable the attacker to run malicious code in the browser , and hence cannot be used to insert any Malware .
How Hackers are Targetting the Firefox PDF Bug
So even if the malware is not downloaded on your machine , the attacker is still able to upload files files from your machine and steal critical data from your computer .
The firefox pdf bug is also a Voilation of Same Origin Policy
But due to firefox pdf bug , the files from your computer are sneaked away clearly voilating the cross origin policy . According to Mozilla , Hackers have already started exploiting this bug .
So now the adverstisement you see on your favourate news site could be stealing files from your system .