Firefox 3.0.8 was released by Mozilla.org and it fixes the following critical security vulnerabilities in Firefox 3.0.7.
- MFSA 2009-13: Arbitrary code execution through XUL <tree> element
- MFSA 2009-12: XSL Transformation vulnerability
According to Mozilla.org, an attacker could potentially use the vulnerabilities to crash and run arbitrary code on victim's computer. Please upgrade your browser to Firefox 3.0.8. Firefox 2 is not affected by these vulnerabilities.
Firefox 3.0.8 download - http://www.mozilla.com/en-US/firefox/all.html
Firefox 3.0.8 release notes - http://www.mozilla.com/en-US/firefox/3.0.8/releasenotes/
Updating Firefox - http://support.mozilla.com/en-US/kb/Updating+Firefox
Finding your Firefox version - http://support.mozilla.com/en-US/kb/Finding+your+Firefox+version