Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Board index Community InformationNews Desk

Mozilla patches Firefox bugs

Notifications for Security Updates, as well as News and Information from across the web - mostly security minded.

Update Contributors: Members of the Malware Removal University.

Regular Members: Our Regular Members are invited to start and/or participate in all other topics. Join in and share the news that's important to you.
Post a reply

Mozilla patches Firefox bugs

Unread postby Jase123 » November 27th, 2007, 12:41 pm

Mozilla have fixed a widely publicised security vulnerability in Firefox in its latest batch of patches.

The 2.0.0.10 update fixes a handful of memory corruption flaws that crash firefox, and a cross-site request forgery flaw that could give attackers unauthorised access to certain websites.
But the most anticipated fix addresses a problem in the way Firefox processes files that are compressed using the .jar (Java Archive) format.

Firefox does not properly check .jar files, giving attackers a way to launch web-based cross-site-scripting attacks against Firefox users. The bug was reported in February and gained widespread attention in early November when security researchers showed how it could be used to run unauthorised code on vulnerable PCs.

The memory corruption bugs could also have led to more serious problems, Mozilla said. "We presume that with enough effort, at least some of these could be exploited to run arbitrary code," the company said on its website.

This .jar flaw is one of a new category of bugs that have popped up n Firefox and other browsers in recent months. They have to do with the way the browser handles links that are used to launch other applications. Known as URI (Uniform Resource Identifier) protocol handler vulnerabilities, these bugs can be triggered when software is launched via the browser.

URI protocol handler flaws have been found in Microsoft Internet Explorer, Adobe software and Google's Picasa software.
Jase123
Banned Member
 
Posts: 57
Joined: September 28th, 2007, 4:48 pm
Location: England
Top
Advertisement
Register to Remove

Re: Mozilla patches Firefox bugs

Unread postby Jase123 » November 27th, 2007, 12:41 pm

bump
Jase123
Banned Member
 
Posts: 57
Joined: September 28th, 2007, 4:48 pm
Location: England
Top
Post a reply
  • Similar Topics
    Replies
    Views
    Last post

Return to News Desk



Who is online

Users browsing this forum: No registered users and 32 guests

The teamDelete all board cookiesAll times are UTC - 5 hours [ DST ]

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware

Board index