Firefox pulled its newly released browser upgrade, version 16, because of a 'critical' vulnerability that has been discovered.
Mozilla had just released the browser on Tues., Oct. 9, however Michael Coates, Director of Security Assurance, posted an announcement yesterday on its security blog outlining the problem and said the company had removed the new version off its installer page.
“The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL or URL parameters. At this time we have no indication that this vulnerability is currently being exploited in the wild," Coates wrote.
Mozilla said this does not affect version 15 and indicated its team is actively working on a fix for the security flaw. The post also advised users who had already upgraded to downgrade back to version 15.0.1 and shared this link.
Computerworld reported that version 16 featured patches for 24 vulnerabilities, 21 of which were deemed to be "critical".
The nature of version 16's vulnerability is not published nor is it shared by the company how it was discovered. Mozilla expects to have a fixed Firefox version 16 available sometime today.
BBC reported Mozilla said only a "limited number of users are affected."
Earlier this month Firefox regained the No. 2 browser position over Google's Chrome. Internet Explorer still dominates this market.