Firefox downloads infected by ad virus

Mozilla has stopped distributing a language pack for Firefox after discovering it had been infected by malicious code for over two months.

Although Mozilla's Vietnamese language pack for Firefox has been compromised by the malware, labelled HTML.Xorer, since February, the problem was only discovered earlier this week, according to Mozilla.

The malware left those downloading the language pack open to unwanted ads.

Mozilla does not know how many computers have been affected by the corrupted file, however, since November 2007 there have been 16,677 downloads of the language pack, according to Window Snyder a Mozilla security blogger .

Mozilla usually completes a virus scan of software it makes publicly available, however its scanners failed to detect the virus, according to Snyder.

"We are also adding after-the-fact scans of everything to address this sort of case in the future," said Snyder.

Veteran Microsoft "Most Valuable Professional" Sandi Hardmeier, who specialises in Internet Explorer and Outlook Express, is "staggered" that the infected file has been distributing for over two months.

"It is also staggering that Mozilla seemingly did (does?) not complete regular scanning of their files to check for previously undetected malware — didn't they realise that there is always a period of time between malware being released to the wild, and security products updating their products to add detection of new malware??"

Mozilla recommends disabling the Vietnamese language pack using the add-ons dialog on the Tools menu.

• Related stories

• Alerts

Add your opinion

1. Must be pretty dumb malware... Dean -- 09/05/08

   ... if just disabling the Vietnamese language pack also disables the malware. I would think the pertinent thing to do would be to do a virus scan if you've downloaded the Vietnamese language pack.
   
   Oh wait, but people using Firefox don't have virus scanners, because Firefox is invulnerable to viruses...

   • Reply to comment
   • Reply to story
   • Report offensive content

   1. ie groupy Fred -- 09/05/08

      Seems like an IE fanboy has finally got a Firefox blemish to pick on.
      
      I think everyone has a virus scanner on windows because XP and Vista security bugs the crap out of you if you don't.
      
      No software has perfect security but Firefox is much more secure then IE and its ActiveX malware dream.
      
      Firefox is still them most secure browser.

      • Reply to comment
      • Report offensive content

   2. Fred the Fairy Anonymous -- 09/05/08

      Fred, you're off in dream land if you think firefox is the most secure. You are delusional if you even think it is secure.
      
      It is the least secure because it has the greater number of 3rd party plugins - which obviously you cannot trust :)

      • Reply to comment
      • Report offensive content

   3. Looking through closed eyes again Anonymous -- 12/05/08

      Firefox "blemish", and then the gall to attribute blame to the OS for a) the act of a third part app, and b) the owner of the third party app not performing a scan in the first place.
      Funny stuff.

      • Reply to comment
      • Report offensive content

   4. Firefox v. anything from Microsoft Hugh -- 12/05/08

      Software is like a safe - any safe can be cracked, given time, the right tools and the right approach. If Microsoft built safes, they would make them out of tissue paper - as evidenced by the long and inglorious history of security flaws in their software.

      • Reply to comment
      • Report offensive content

   5. Nothing to do with the 'safe' this time Anonymous -- 14/05/08

      Read the original bug report. The issue is a result of a language pack running scripts - there are exists requests for this scripting option to be removed as it was seen long ago as an open hole ... but nothing was done (and still has not been done - the hole is still there).
      Any script executed in this was WILL run on all os platforms that support firefox. If firefox [during the install] asks for an os related rights many users will provide this access under the assumption that it is part of a valid install of a trusted supplier.
      
      In this case the safe, no matter what it is made of in the first place, has a great hole in the back which everyone seems eager to ignore. Lets take the fuse out of the safe explosive [by scanning this one language pack], but lets continue to allow anything to go into ANY safe.

      • Reply to comment
      • Report offensive content

2. Firefox Security Issue Don -- 13/05/08

   In defence of Firefox and IE, no one is safe from the low life that write these virus & malware programs, the death penalty should be applied to them. However, this must serve as a wake up call for Firefox to improve their security. Also even the best virus software package doesn't catch them all as I have recently learnt with my own computer. So one breach of security in the time that Firefox has been operating is still a pretty impresive track record.

   • Reply to comment
   • Reply to story
   • Report offensive content

• Just In

• Most Popular

• Most Discussed

Hot Spot - What's Important

Driving Business Growth Through Enterprise IT Management
Dig deeper by clicking here »

Achieve continuous availability with high performance NonStop blade technology

Looking to buy a printer? Our superguide rates the latest printers and shines a light into the industry.

When chief information officers and other technology managers talk about their priorities, security is always high on the list.

Principles for a successful business

Reader Services

Popular Topics

Essentials