Code that exploits one of the flaws patched in the latest Firefox and Mozilla suite releases has been released onto the Internet. The release comes just days after Mozilla released an updated version of Firefox in order to address several issues including this one. The flaw in question relates to the way the browsers handle International Domain Names, which are Web addresses that use international characters.
The exploit could let attackers run code remotely on vulnerable computers and works on Firefox, Mozilla and, in some cases, Netscape, according to security researcher Berend-Jan Wever, who published the code. Mozilla has urged users to upgrade to the latest versions of its products.