|
Posted by ~BD~ on September 24, 2008, 5:00 pm
If you were Registered and logged in, you could reply and use other advanced thread options
September 24, 2008 (Computerworld) Mozilla Corp. late Tuesday patched 11
vulnerabilities in Firefox
3.0, more than half of them labeled "critical," and fixed 14 flaws in the older
Firefox 2.0.
Firefox 3.0.2 quashes six critical bugs, four marked "high" and one pegged as
"low" in Mozilla's
four-step threat ranking system. Among the most serious were four stability bugs
in the browser's
graphics rendering, layout and JavaScript engines that can crash the program and
might be
exploitable with malicious code.
"Some of these crashes showed evidence of memory corruption under certain
circumstances and we
presume that with enough effort at least some of these could be exploited to run
arbitrary code,"
said Mozilla in the accompanying advisory.
Mozilla also updated the older Firefox to 2.0.0.17, patching all but one of the
bugs fixed in 3.0.2,
but also addressing several issues specific to the aging browser.
See:
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9115399&source=NLT_SEC&nlid=38
| 
XML site map