it.ucsf.edu

Security Update:Mozilla Releases Security Updates to Address Critical Vulnerabilities in Firefox and Firefox ESR

Status Type

Security Update

Date and Time

Wednesday, September 23, 2015 - 15:16

Reason

Security Update

Impact

Firefox and Firefox ESR Users

 

WHAT HAPPENED?

The Mozilla Foundation has released security updates to address critical vulnerabilities in Firefox and Firefox ESR.

Mozilla classifies a critical vulnerability when no user interaction beyond normal browsing is required to exploit vulnerabilities.

Advanced Users: For a complete description of the security enhancement and affected software refer to:


AFFECTED SYSTEMS:

  • Firefox 41
  • Firefox ESR 38.3


WHAT'S THE PROBLEM?

Exploitation of the vulnerability may allow an attacker to read and steal sensitive local files on the victim's computer.


HOW DO I PROTECT MY COMPUTER?
Update your software

  1. If you are supported by ITFS or have different IT support, no action on your part is required.
  2. If you do not have IT support or they do not support your computer, Firefox is setup by default to auto update; but if you disabled that function and you need to manually update refer to:

RELATED LINKS