Firefox 3.5.2 released to fix critical security problem

Graham Cluley

Mozilla, the makers of the Firefox web browser, has issued an important update that fixes a number of security issues – including the problem of how hackers could spoof SSL certificates by inserting null characters into certificates, exposed at the BlackHat conference last week.

In a blog post, Mozilla said that they “strongly recommend that all Firefox users upgrade to this latest release”.

Fortunately Firefox includes automatic updating technology, so users should receive a notification of the update’s availability within 24 or 48 hours. If you wish to install the update manually, you can just choose “Check for Updates” from Firefox’s Help menu.

Of course, in a corporate environment you may choose to roll out the…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.

Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.