On CNET: CNN's 'hologram' was horrendous
BNET Business Network:
BNET
TechRepublic
ZDNet

May 8th, 2008

Malware shipped with Firefox 2 language pack

Posted by Larry Dignan @ 6:18 am

Categories: Browsers, Exploit code, Mozilla

Tags: Mozilla Firefox, Malware, Mozilla Firefox 2.0, Mozilla Corp., Language, Virus, Cyberthreats, Web Browsers, Viruses And Worms, Security

Mozilla is warning that a Vietnamese language pack for Firefox 2 is carrying malware.

In her blog, Mozilla security chief Window Snyder writes:

The Vietnamese language pack for Firefox 2 contains inserted code to load remote content.  This code is the result of a virus infection, but does not contain the virus itself.  This usually results in the user seeing unwanted ads, but may be used for more malicious actions.

Everyone who downloaded the most recent Vietnamese language pack since February 18, 2008 got an infected copy.  While we cannot determine the exact number of compromised downloads, there have been 16,667 total downloads of the Vietnamese language pack since November 2007, so we anticipate the impact on users to be limited.

Also follow the bug for the issue.

Snyder also noted that Mozilla scans for viruses at upload time, but the scanner didn’t catch this problem “until several months after the upload.” Mozilla is adding additional virus scans to catch these issues in the future.

Larry DignanLarry Dignan is Editor in Chief of ZDNet and Editorial Director of ZDNet sister site TechRepublic. See his full profile and disclosure of his industry affiliations.

  • Talkback
  • Most Recent of 22 Talkback(s)
Absolutely spot on, time to look inwards!
ZDNet are guilty of sensationalism and "selling" there news, instead of being objective observers and reporters for the industry.... (Read the rest)
Posted by: judgesinel@... Posted on: 05/11/08 You are currently: Logged In | Log out
if "language pack" is open source? Why they didn't catch it? :-) qmlscycrajg   | 05/08/08
What difference does open source make? storm14k   | 05/08/08
They did. FreewheelinFrank   | 05/10/08
if "language pack" is open source, why they didn't catch it? qmlscycrajg   | 05/08/08
Many eyes can != Many eyes will rpmyers1   | 05/08/08
if "language pack" is open source, why they didn't catch it? qmlscycrajg   | 05/08/08
Got stuck keys? shallow_diver   | 05/08/08
They're imitating Microsoft... Carrion   | 05/08/08
Refreshing your memory Ed Bott  ZDNet | 05/08/08
It's relevant because... Carrion   | 05/08/08
Hostile? Wha? Ed Bott  ZDNet | 05/08/08
Just seemed a bit short Carrion   | 05/08/08
I still don't get it Ed Bott  ZDNet | 05/08/08
I'd expect that too Ed, but... b8375629@...   | 05/09/08
hundreds of millions checking.... judgesinel@...   | 05/11/08
PS: Left out the smiley face Ed Bott  ZDNet | 05/08/08
I'll do it for ya :) Now all should be well. (nt) klumper   | 05/08/08
How about a more recent analogy... 3D0G   | 05/09/08
Safer doesn't mean invincible (nt) b8375629@...   | 05/09/08
Misleading headline FreewheelinFrank   | 05/10/08
Absolutely spot on, time to look inwards! judgesinel@...   | 05/11/08
RE: Malware shipped with Firefox 2 language pack... oregonnerd13   | 05/10/08

What do you think?

No Trackbacks Yet

The URI to TrackBack this entry is:
http://blogs.zdnet.com/security/wp-trackback.php?p=1081

Essential Topics Click Here

advertisement

Recent Entries

advertisement

Archives

ZDNet Blogs

Fusion

advertisement
Click Here