Mozilla has begun blocking an unsecured Java plugin for its Firefox browser.

The move, applied through the open source outfit's Plugin Check feature, is intended to protect Firefox fans from a recently discovered security flaw affecting the Java Deployment Toolkit on multiple flavours of Firefox.

Several other insecure plug-ins are already blocked through Plugin Check, as listed on Mozilla's website here. Often such moves are applied in response to frequent instances of browser crashes, a problem that applies to versions of Yahoo Application State Plugin, Skype and AVG SafeSearch, for example. In other cases, such as Apple QuickTime Plugin version 7.1, the block relates to a security vulnerability in the add-on software.

Screenshots illustrating how the Plugin Check technology blocks the Java plugin can be found in a blog post by F-secure here. Mozilla, which launched Plugin Check as a Firefox-only service last October, has plans to expand the technology to warn of potential problems with add-ons to other browsers, as explained in our earlier story here. ®

Related stories

• Mozilla to auto-block unwanted Firefox add-ons (12 August 2011)
• Mozilla blocks Firefox-breaking Skype toolbar (21 January 2011)
• Updated Mozilla detects insecure plugins for IE, Chrome, Safari (11 May 2010)
• Trojan poses as Google Chrome extension (19 April 2010)
• Oracle releases emergency security patch for Java (15 April 2010)
• Java code-execution vuln exploited in drive-by attack (14 April 2010)
• Java bug exposes users to serious code-execution risk (9 April 2010)
• Firefox plans fix for decade-old browsing history leak (5 April 2010)
• MS delivers emergency IE fix (30 March 2010)
• Mozilla site to offer multi-browser add-on security check (25 March 2010)