Welcome to WebmasterWorld Guest from 22.214.171.124
Forum Moderators: incrediBILL
They provided exploit code that forced Firefox to launch other local programs when a malformed URL was passed to it from Internet Explorer 7 on Windows XP SP2. According to the two, only users whose machines have IE 7 as well as Firefox are at risk.
"Just to be clear, this vulnerability is delivered through the Firefox browser, not IE. You simply have to have IE7 installed somewhere on your system for this to work, which is basically most Windows XP SP2 systems," Rios said.
So this flaw should be plugged with the next update. After an exploit is publicized, speed of patching becomes important, but at least this one was not found "in the wild", but rather by researchers.