Firefox patches critical flaws
Posted on 23 Oct 2007 at 11:53
Mozilla has updated its Firefox browser, patching 10 flaws, three of which have been rated as critical.
Security vendor Secunia notes that the most serious of the bugs could allow code execution, allowing attackers to insert malware into systems running an unpatched version of Firefox.
The software provider also updated a patch that was first issued in July and was designed to plug the hole created by a Universal Resource Identifier (URI) weakness in Windows which was identified some months ago, but only acknowledged by Microsoft last week.
In notes accompanying the URI patch, Mozilla says: "That [July patch] did not prevent the incorrect file-handling programs from launching, which left some risk."
It also says an additional fix has been applied to its latest version, Firefox 2.0.0.8, that "detects when Windows would mishandle these URIs so that the wrong program does not get launched". And this patch follows a series from Mozilla that attempt to plug the URI vulnerability gap.
Author: Miya Knights
advertisement
- Need a bit of extra Christmas cash? Grass up your boss, says BSA
- Photoshop Mobile on Android review: first look
- ATI Radeon HD 5970: 42% more expensive in the UK
- Office 2010 Beta – 32-bit or 64-bit – The Choice is Clear
- Why Britain's watchdogs have fewer teeth than goldfish
- Tabbed documents: how to make Office 2010 great
- Outlook 2010 People Pane – does it spell death to Xobni
- Microsoft Outlook 2010 screenshots
- Co-Authoring in Word 2010 and SharePoint Foundation 2010
- Microsoft Outlook 2010 screenshots: Backstage view
- Getting to grips with Microsoft's IT Health Environment Scanner
- Virtualise your servers
- The changing face of travel gadgets
- Build your own distributed file system
- The bulletproof Dell that costs an arm and a leg
- Microsoft Office 2010 Technical Preview: Q&A
- Lawnmowers, the TyTN II and one odd insurance request
- There'll never be a bulletproof OS
- How far can we trust apps?
- Five nice touches in Outlook 2010
advertisement
Printed from www.pcpro.co.uk


