Firefox rushes to fix critical vulnerability that could be used to expose anonymous Tor users
Firefox rushed to fix a critical vulnerability in its browser that could potentially be used to find out the identities of those using the anonymising network, Tor. Tor is a browser that allows for anonymous web surfing, and supports use of its anonymising network by third party browsers.
Firefox published an advisory for the vulnerability alerting users of a threat to their privacy, and then quickly went on to release a fix for the vulnerability.
The payload was known to work only on Windows machines, but the vulnerability existed on Mac and Linux systems as well. The exploit works similar to the “Network Investigative Technique” previously used by the FBI to gather evidence against a child porn ring.
The similarity has lead Firefox to suspect that this exploit was also developed by government sponsored agencies. If that is the case, Firefox says that the exploit getting into the wild brings to focus the dangers posed to the larger web because of state sponsored tools.
Source by firstpost….Share: