On CNET: Do more with Pandora
BNET Business Network:
BNET
TechRepublic
ZDNet

May 8th, 2008

Malware shipped with Firefox 2 language pack

Posted by Larry Dignan @ 6:18 am

Categories: Browsers, Exploit code, Mozilla

Tags: Mozilla Firefox, Malware, Mozilla Firefox 2.0, Mozilla Corp., Language, Virus, Cyberthreats, Web Browsers, Viruses And Worms, Security

Mozilla is warning that a Vietnamese language pack for Firefox 2 is carrying malware.

In her blog, Mozilla security chief Window Snyder writes:

The Vietnamese language pack for Firefox 2 contains inserted code to load remote content.  This code is the result of a virus infection, but does not contain the virus itself.  This usually results in the user seeing unwanted ads, but may be used for more malicious actions.

Everyone who downloaded the most recent Vietnamese language pack since February 18, 2008 got an infected copy.  While we cannot determine the exact number of compromised downloads, there have been 16,667 total downloads of the Vietnamese language pack since November 2007, so we anticipate the impact on users to be limited.

Also follow the bug for the issue.

Snyder also noted that Mozilla scans for viruses at upload time, but the scanner didn’t catch this problem “until several months after the upload.” Mozilla is adding additional virus scans to catch these issues in the future.

Larry DignanLarry Dignan is Editor in Chief of ZDNet and Editorial Director of ZDNet sister site TechRepublic. See his full profile and disclosure of his industry affiliations.

  • Talkback
  • Most Recent of 22 Talkback(s)
Absolutely spot on, time to look inwards!
ZDNet are guilty of sensationalism and "selling" there news, instead of being objective observers and reporters for the industry.... (Read the rest)
Posted by: judgesinel@... Posted on: 05/11/08 You are currently: a Guest | | Terms of Use
if "language pack" is open source? Why they didn't catch it? happy  qmlscycrajg | 05/08/08
What difference does open source make?  storm14k | 05/08/08
They did.  FreewheelinFrank | 05/10/08
if "language pack" is open source, why they didn't catch it?  qmlscycrajg | 05/08/08
Many eyes can != Many eyes will  rpmyers1 | 05/08/08
if "language pack" is open source, why they didn't catch it?  qmlscycrajg | 05/08/08
Got stuck keys?  shallow_diver | 05/08/08
They're imitating Microsoft...  Carrion | 05/08/08
Refreshing your memory  Ed BottZDNet Moderator | 05/08/08
It's relevant because...  Carrion | 05/08/08
Hostile? Wha?  Ed BottZDNet Moderator | 05/08/08
Just seemed a bit short  Carrion | 05/08/08
I still don't get it  Ed BottZDNet Moderator | 05/08/08
I'd expect that too Ed, but...  hasta la Vista, bah-bie | 05/09/08
hundreds of millions checking....  judgesinel@... | 05/11/08
PS: Left out the smiley face  Ed BottZDNet Moderator | 05/08/08
I'll do it for ya happy Now all should be well. (nt)  klumper | 05/08/08
How about a more recent analogy...  3D0G | 05/09/08
Safer doesn't mean invincible (nt)  hasta la Vista, bah-bie | 05/09/08
Misleading headline  FreewheelinFrank | 05/10/08
Absolutely spot on, time to look inwards!  judgesinel@... | 05/11/08
RE: Malware shipped with Firefox 2 language pack...  oregonnerd13 | 05/10/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

advertisement
Click Here