A new attack has been found in which Internet Explorer could be used to activate Firefox and run malicious code. It’s done through a Firefox protocol handler used to to execute ‘firefoxurl://’ commands. According to Vnunet, “If Internet Explorer is used on a page that tries to use the ‘firefoxurl://’ the browser will activate Firefox automatically and allow malicious code to be run in JavaScript.” The exploit was found by security reasearcher Thor Larholm, and there is currently no patch but Mozilla says they’re working on it.

A new attack has been found in which Internet Explorer could be used to activate Firefox and run malicious code. It’s done through a Firefox protocol handler used to to execute ‘firefoxurl://’ commands. According to Vnunet, “If Internet Explorer is used on a page that tries to use the ‘firefoxurl://’ the browser will activate Firefox automatically and allow malicious code to be run in JavaScript.” The exploit was found by security reasearcher Thor Larholm, and there is currently no patch but Mozilla says they’re working on it.