November 13, 2008

New security updates for Firefox 2 and 3

Firefox updated for security flaws
Firefox updated for security flaws
Mozilla has pushed out updates to Firefox versions 2 and 3 to shore up 20 vulnerabilities, some of which could be exploited to launch remote code attacks.

Firefox 2.0.0.18 contains updates for 11 flaws -- six labeled critical, while Firefox 3.0.4 closes nine flaws -- four deemed critical.

The vulnerabilities could be exploited to execute a range of attacks, including arbitrary code injection, privilege escalation, cross-site scripting, denial-of-service, security bypass and information disclosure, according to a US-CERT alert.

Also on Wednesday, Mozilla released a new version of its open-source internet suite, SeaMonkey, which comes outfitted with the same fixes as Firefox 2.0.0.18.

Users are advised to upgrade to Firefox 3, as Mozilla plans to cut support for Firefox 2 around mid-December.
Related Articles
Related Topics
Related Links

Sign up to our newsletters

More in News

Bitcoin mining botnet has become one of the most prevalent cyber threats

Fortinet researchers have tracked 100,000 new ZeroAccess trojan infections per week, making the botnet very lucrative to its owners.

House Intelligence Committee OKs amended version of controversial CISPA

House Intelligence Committee OKs amended version of controversial ...

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help in ID'ing alleged hackers

Judge rules hospital can ask ISP for help ...

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.