Largest Directoty of Internet Security Software

New Firefox Version Fixes 8 Security Holes

Home Software Threats Security
News		  

New Firefox Version Fixes 8 Security Holes
[author:zyk06 Public time:Dec 21, 2006]
Mozilla on Tuesday released updates to fix at least eight security vulnerabilities in its Firefox Web browser and related software. Five of the eight flaws received a "critical" label, meaning that an attacker could exploit them to break into machines running vulnerable versions of the software.

Patches are available for both the 1.5.x and 2.x versions of Firefox, each of which should automatically alert you when the updates are ready for installation. Users also can install updates by clicking on "Help" then "Check for Updates." Some of the same updates also are available Mozilla's Thunderbird e-mail client, and its Seamonkey Internet suite.

Mozilla did not address one particular flaw that has received quite a bit of press over the past month: A bug in Firefox's password manager that could be exploited to gain access to a victim's stored user names and passwords.

Dan Veditz, a member of Mozilla's security team, said the team members thought they had a fix for the password manager flaw ready a week ago Friday, but later learned that it really didn't solve the problem. He said Mozilla currently plans to ship a fix for the problem in January.

"It made the password manager pretty unusable," Veditz said. "It required a format change to the password manager file to store additional information, and doing that ran the risk of losing peoples' passwords, so we were very uncomfortable rushing it in and decided to hold off a bit."

One final note: If you're using a version of Firefox prior to 1.5 (see "Help," "About Firefox" to view the version number), then it's time to install Firefox 2.0. Mozilla long ago stopped supporting or shipping patches for any Firefox versions that begin with 1.0.

Author: Brian Krebs
Source: http://blog.washingtonpost.com/




Printed From:http://www.free-press-release.com/news/200612/1166707022.html
Source:Free Press Release

Similar news >>
  • HowsMyNanny.com Celebrates 1st Anniversary as Nanny Reporting Site Provides Feedback to Parents [Oct 19, 2007]
  • Metal Detectable Products with new design feature [Oct 13, 2007]
  • The Case for Renewable Energy [Oct 12, 2007]
  • Registration Now Open for Largest U.S. Maritime Industry Trade Show [Oct 3, 2007]
  • Don L. Rondeau Interviews Former DHS Deputy Sec Jim Loy ( Video) [Sep 19, 2007]
  • The Rondeau Report- Featuring Former DHS Deputy Sec Jim Loy [Sep 19, 2007]
  • Govt to ask RIL to prioritise gas sales [Sep 18, 2007]
  • Datacraft offers ‘best of breed’ solutions to the Manufacturing Industries [Sep 13, 2007]
  • Intelligent Wave USA, Inc. Announces Partnership with Gennoa SRL. for the Argentinean Market [Sep 5, 2007]
  • Background check [Aug 23, 2007]

    		•


    Cookie Cleaner   |    History Eraser   |    Popup Killer   |   Firewall   |   Antivirus   |   Security Encryption   |   UnInstaller   |   Security News
    eTrust Pestpatrol Anti-Spyware   PestPatrol 5   Ad-Aware SE Removal   Ad-Aware SE   Ad-Watch   SpyFighter Cleaner Pro   Free Adware Remover   Spy Sweeper  Webroot Spy Sweeper 
    Copyright © 2002-2007 Internet Security Software.All rights reserved.
    Directory of Internet Security Software - Cookie & Cache Cleaner, History & Evidence Eraser, Popup Killer, Firewall
    Powered By DownloadAtoZ