Tech Insider

Monday, April 18, 2005

Mozilla Fixes Firefox Again

Version 1.0.3 of Firefox fixes a number of Javascript and cross-site scripting vulnerabilities, as well as other flaws in the browser.

Version 1.0.3 Fixes:

Javascript "lambda" replace exposes memory contents
javascript: PLUGINSPAGE code execution
Showing blocked javascript: popup uses wrong privilege context
Cross-site scripting through global scope pollution
Code execution through javascript: favicons
Search plugin cross-site scripting
Arbitrary code execution from Firefox sidebar panel II
Missing Install object instance checks
Privilege escalation via DOM property overrides

Mozilla is encouraging all Firefox users to update their browsers as soon as possible to plug the holes.

Mozilla now claims Firefox has been downloaded 44 million times, and the count is rapidly growing despite the rising number of potential security flaws that are being found in the browser.

The number of bugs being found in Firefox by security researchers is now approaching the same level as those found in Microsoft’s still dominant Internet Explorer.

Click Here To Download Firefox 1.0.3


Post a Comment

<< Home