Security researcher Petko D. Petkov has released details on a year-old vulnerability in Apple's QuickTime
media player that can cause Firefox to install backdoors and other malware on a fully patched computer.
"On its own, the QuickTime issue is less critical. […]Firefox is not vulnerable either. But when put together, they create a very dangerous combination," said Petkov.
Mozilla security chief Window Snyder has confirmed this is a “very serious issue” for Firefox users and said it is working with Apple on a fix, but until that happens users are advised to disable the QuickTime plug-in.