Firefox fixes eight security flaws
SMUG FIREFOX users snickering as they watch Microsoft's scramble to patch Internet Exploder's critical zero-day security vulnerability can wipe those smiles off their faces and get to updating.
Mozzarella has just unleashed Firebadger 3.0.5, which fixes three critical security flaws in the leading open sauce web browser.
This latest release addresses eight Firefox security advisories in all. Three vulnerabilities are labeled critical flaws. Mozilla says those "can be used to run attacker code and install software, requiring no user interaction beyond normal browsing."
Those are described as XSS vulnerabilities in SessionStore, XSS and JavaScript privilege escalation and Crashes with evidence of memory corruption.
Of the other five patches, one is labeled high impact and a second is tagged as moderate impact, whilst the other three fix minor, low impact vulnerabilities.
The Firefox update service will offer to download version 3.0.5, or users can download the new release from Mozilla's website and install it manually. µ
Share this:
ShareBusiness Intelligence Software
Customer Relationship Management (CRM)
Enterprise Accounting Software
Enterprise Resource Planning (ERP)
Enterprise Systems Management
"SMUG FIREFOX users...watch Microsoft's scramble...can wipe those smiles off their faces and get to updating."
Yes, yes we can. *Continues laughing and pointing*
no wiping needed here, but then I'm not stupid enough to have bought in to that bloatware crap FriedFox. My opera's a lot more secure (and did I mention faster, more built in, less system hungry...
I don't get why apple doesn't buy opera, they can seamlessly merge the fanbases...
There was everyone on the BBC website beaming about how only muppets would run IE, and that everyone should install firefox.
Looks like any old malicious website can install the bogus GreaseMonkey extension that steals all your personal data and bank details..
Opera does not support third party extensions for very good reasons, see what a mess IE's ActiveX controls and firefoxs extensions bring... At least IE's ActiveX controls you have to be stupid enough to install them, the problem with Firefox means you don't even have to be that stupid..
The only secure browser: www.opera.com
What? :-O Firefox has security flaws? Are you sure it's not IE? LOL
Its just common sense that browsers will have security flaws.
I'm just pleased to see both IE and FF finding and fixing these flaws before there is widespread damage.
re: "Opera does not support third party extensions for very good reasons... The only secure browser..."
-------
does opera also promote avoiding vehicle accidents by staying holed up at home? crashing planes obviously not covered...
Interestingly enough, Mozilla also announced that FF-2 is now "retired" and will not be getting any more patches, security or otherwise.
Just 2 years after V2 was released and you are now forced to upgrade to V3 or risk security compromise.
Little wonder that IE remains the browser of choice in large corporate installations. Yes, it's a major PITA at times, but the 10 years (or so) of support life expectancy for IE versions does allow a degree of planning.