SDA India is an online resource for Software, Development,IT, Architecture, Open Source, Mobile, Security, Databases, Delphi, C, OS, Asp, .Net, Php, Xml, Java
From the News Desk
Wednesday, 26. March 2008
Mozilla Updates Firefox with Vulnerabilities Tackled
Mozilla has patched 10 vulnerabilities in Firefox 2.0 with update 2.0.0.13. The release was accompanied by six Mozilla Foundation Security Advisories, two of them marked critical.
The critical bugs fixed in 2.0.0.13 include a JavaScript privilege escalation and arbitrary code execution issue. According to Mozilla's advisory, the problem relates to a series of flaws that could have allowed page scripts to run with elevated privileges. By running with elevated privileges, the script could potentially have been used by an attacker to exploit a vulnerable system.
The second critical bug fix by Mozilla in the latest release relates to memory corruption. The new release also addresses a unique spoofing vulnerability that could potentially be used by an attacker in a phishing exploit.
Even as Mozilla is working on strengthening and stabilizing Firefox 2, Firefox 3 browser is in the pipeline for release, with the Beta 5 release expected sometime next week.
The critical bugs fixed in 2.0.0.13 include a JavaScript privilege escalation and arbitrary code execution issue. According to Mozilla's advisory, the problem relates to a series of flaws that could have allowed page scripts to run with elevated privileges. By running with elevated privileges, the script could potentially have been used by an attacker to exploit a vulnerable system.
The second critical bug fix by Mozilla in the latest release relates to memory corruption. The new release also addresses a unique spoofing vulnerability that could potentially be used by an attacker in a phishing exploit.
Even as Mozilla is working on strengthening and stabilizing Firefox 2, Firefox 3 browser is in the pipeline for release, with the Beta 5 release expected sometime next week.
