We’d all better be ready for the upcomin…

We’d all better be ready for the upcoming Security Now news roundup show where this Firefox 3.5 zero-day exploit will doubtlessly be discussed at some length.

Short version? The new JavaScript Just-In-Time compiler that ships with Fx3.5 has a drive-by remote code execution flaw. The US CERT said SysAdmins should just disable JavaScript until the fix is out.

Or we could just run NoScript.