|
Mozilla Firefox Command line URL Processing Bug Lets Remote Users Open Tabs and Execute Arbitrary Code: related news
Tags:
arbitrary bug code command execute firefox lets mozilla open processing remote tabs url users line
Description: A vulnerability was reported in Mozilla Firefox. A remote user can cause arbitrary code to be executed on the target user's system.
in Open Source
via Security Tracker @ 23:10 16th Jul
- Related
Description: A vulnerability was reported in Mozilla Firefox. A remote user may be able to cause arbitrary code to be executed on the target user's system.
in Open Source
via Security Tracker @ 1:03 20th Jul
- Related
Description: A vulnerability was reported in Sun Java System Access Manager. A remote user can cause arbitrary code to be executed on the target user's system.
in Developer
via Security Tracker @ 11:17 29th Jun
- Related
As part of Mozilla Corporation's ongoing stability and security update process, Firefox 2.0.0.16 is now available for Windows, Mac, and Linux for free download from http://www.mozilla.com/firefox/all-older.html. We strongly recommend that all Firefox users upgrade to this latest release. If you already have Firefox 2.x, you will receive an automated update notification within 24 to 48 hours. This update can also be applied manually by selecting "Check for Updates?" from the Help menu. For a list of changes and more information, please review the Firefox 2.0.0.16 Release Notes at: http://www.mozilla.com/firefox/2.0.0.16/releasenotes/ Note: Firefox 2.0.0.x will be maintained with security and stability updates until mid-December, 2008. All users are encouraged to upgrade to Firefox 3.
in Open Source
via LWN @ 9:48 18th Jul
- Related
Description: A vulnerability was reported in Red Hat Directory Server. A remote user can execute arbitrary code on the target system.
in Linux
via Security Tracker @ 15:34 29th Aug
- Related
Mozilla on Tuesday posted Firefox 2.0.0.15, an update to its web browser that resolves several vulnerabilities, ranging from several benign problems, to critical bug fixes related to arbitrary code execution and remote control of a user's system. Among the major fixes are MFSA 2008-21, 2008-24, 2008-25, and 2008-33, which resolve crashes when memory is corrupted, Chrome script loading vulnerabilities, arbitrary code execution in a .loadSubScript() command, as well as crashing and remote code execution.
in Open Source
via Electronista @ 9:09 4th Jul
- Related
As part of Mozilla Corporation's ongoing stability and security update process, Firefox 3.0.1 is now available for Windows, Mac, and Linux for free download from http://getfirefox.com/. We strongly recommend that all Firefox users upgrade to this latest release. If you already have Firefox 3.0, you will receive an automated update notification within 24 to 48 hours. This update can also be applied manually by selecting "Check for Updates?" from the Help menu. For a list of changes and more information, please review the Firefox 3.0.1 Release Notes at: http://www.mozilla.com/firefox/3.0.1/releasenotes/ Note: All Firefox 2.0.0.x users are encouraged to upgrade to Firefox 3.0.1 by downloading it from http://getfirefox.com/. (follow-up: mozilla.
in Open Source
via LWN @ 9:48 18th Jul
- Related
An anonymous reader writes "Just a week after Mozilla shipped Firefox 3.0, the open-source developer has proposed ship dates for the next version that, if approved, would produce an alpha release next month and a final no later than early 2009. According to a draft schedule discussed at a recent meeting, Mozilla wants to have the first Firefox 3.1 developer preview ready by July, then move to a beta by August. The schedule slates final code delivery in the last quarter of this year or the first quarter of 2009. A month ago, when Mozilla first started discussing Firefox 3.1 internally, Mike Schroepfer, the company's vice president of engineering, said the upgrade's target ship date was the end of 2008. If Mozilla holds to that plan, Firefox 3.
in Open Source
via Slashdot @ 4:33 1st Jul
- Related
Description: A vulnerability was reported in Oracle WebLogic in the Apache Connector. A remote user can execute arbitrary code on the target system.
in Open Source
via Security Tracker @ 15:19 19th Jul
- Related
On Thursday, Mozilla pushed out a new security update for its new Firefox browser. Version 3.0.1 for Windows and Mac addresses vulnerabilities in malformed GIF files on Mac OS X, command-line URLs that could launch multiple tabs when Firefox is not running, and a potential remote code execution by overflowing CSS reference counter.
in Open Source
via CNET News.com @ 18:33 17th Jul
- Related
Slough, UK 1 July 2008 At the Ingres Code Sprint, the finish line is just the beginning in the race to create new product features. Ingres, a leading provider of open source database management software and support services, hosted the Ingres Code Sprint, a three-day event held in advance of the UK Ingres Users Association Annual Conference in London. Ingres Code Sprint brought together customers, partners, and Ingres engineers to design, code and create new features. As a result of the three-day marathon session, significant new features will be added to the Ingres product line.
in Open Source
via Nestor @ 3:30 2nd Jul
- Related
Slough, UK 1 July 2008 At the Ingres Code Sprint, the finish line is just the beginning in the race to create new product features. Ingres, a leading provider of open source database management software and support services, hosted the Ingres Code Sprint, a three-day event held in advance of the UK Ingres Users Association Annual Conference in London. Ingres Code Sprint brought together customers, partners, and Ingres engineers to design, code and create new features. As a result of the three-day marathon session, significant new features will be added to the Ingres product line.
in Open Source
via WebitPR @ 20:04 1st Jul
- Related
REDWOOD CITY, Calif. --(Business Wire)-- At the Ingres Code Sprint the finish line is just the beginning in the race to create new product features. Ingres, a leading provider of open source database management software and support services, hosted the Ingres Code Sprint, a three-day event held in advance of the UK Ingres Users Association Annual Conference in London. Ingres Code Sprint brought together customers, partners, and Ingres engineers to design, code, and create new features. As a result of the three-day marathon session, significant new features will be added to the Ingres product line.
in Open Source
via TMC Net @ 18:43 1st Jul
- Related
REDWOOD CITY, CA - July 1, 2008 - At the Ingres Code Sprint the finish line is just the beginning in the race to create new product features. Ingres, a provider of open source database management software and support services, hosted the Ingres Code Sprint, a three-day event held in advance of the UK Ingres Users Association Annual Conference in London. Ingres Code Sprint brought together customers, partners, and Ingres engineers to design, code, and create new features. As a result of the three-day marathon session, significant new features will be added to the Ingres product line.
in Open Source
via Database Journal @ 3:35 2nd Jul
- Related
Description: A vulnerability was reported in Opera. A remote user can modify framed content from arbitrary sites.
in Domain Names
via Security Tracker @ 16:23 21st Aug
- Related
An anonymous reader writes "Firefox 3.0.1 was released today. It fixes 3 security vulnerabilities, including a critical issue reported by Billy Rios, Ben Turner, and Dan Veditz. The issue could be combined with an issue in Apple's Safari browser to read data from the user's disk or to execute arbitrary code. This issue was previously discussed on Slashdot. The release also fixes a remote code execution bug involving the CSS reference counter, reported by the Zero-Day Initiative (previously discussed on Slashdot here), as well as a Mac-only potential code execution bug involving GIF image rendering, reported by Drew Yao of Apple Product Security."
in Web Developer
via Slashdot @ 21:28 17th Jul
- Related
Mountain View, Calif. June 17, 2008 The latest version of the Mozilla Firefox Web browser features advanced security protections that can help Mozillas 175 million users from unwittingly giving sensitive information to e-criminals. Thats because Mozilla Firefox 3, launched today as part of a global download event, supports Extended Validation (EV) Secure Sockets Layer (SSL) Certificates from CA vendors including VeriSign, Inc. (NASDAQ: VRSN), the trusted provider of Internet infrastructure services for the networked world.
in Computer Security
via InternetRetailer.com @ 22:27 28th Jun
- Related
Description: A vulnerability was reported in OpenOffice. A remote user with the ability to masquerade as the update server can install arbitrary code on the target user's system.
in Open Source
via Security Tracker @ 13:42 31st Jul
- Related
Description: A vulnerability was reported in Sun Java. A remote user with the ability to masquerade as the update server can install arbitrary code on the target user's system.
in Developer
via Security Tracker @ 12:21 31st Jul
- Related
Reader Alex links to news of a study comparing the currency and patch level of various Web browsers, excerpting: "Firefox users were far and away the most likely to use the latest version, with an overwhelming 83.3 percent running an updated browser on any given day. However, despite Firefox's single click integrate auto-update functionality, 16.7 percent of Firefox users still continue to access the Web with an outdated version of the browser, researchers said. The study also revealed that the majority of Safari users (65.3) percent were likely to use the latest version of the browser between December 2007 and June 2008, after Safari version 3 became available. Meanwhile, Microsoft's Internet Explorer users ranked last in terms of safe browsing.
in Web Developer
via Slashdot @ 7:12 7th Jul
- Related
End Users, End Users, End Users, End Users, End Users, End Users, End Users, End Users, End Users, End Users,...
in Handhelds
via Computerworld @ 13:55 5th Aug
- Related
Categories: Patch Watch, Hackers, Vulnerability research, Responsible disclosure, Exploit code, Firefox, Arbitrary Code Execution, Complex Attacks, Reverse Engineering, Research
in Open Source
via ZDNet @ 17:45 16th Jul
- Related
Code named "Shiretoko", Firefox 3.1 has been launched in an Alpha state following a short delay due to a bug in the OSX-compatible version. Among the features we can expect to see in 3.1 are improved address bar functionality and changes to the tab switching interface, including adding thumbnails of currently open tabs. Also, Firefox 3.1 will be the first Mozilla browser to feature Netscape's Gecko 1.9.1 engine, which reads and renders Internet content to the browser, and also renders the browser's UI. The Firefox 3.1 Alpha is available for download here, and has a projected final release date sometime in late 2008 or early 2009.
in Open Source
via Overclockers Club @ 11:54 5th Aug
- Related
monkeymonkey writes "Mozilla has integrated tracing optimization into SpiderMonkey, the JavaScript interpreter in Firefox. This improvement has boosted JavaScript performance by a factor of 20 to 40 in certain contexts. Ars Technica interviewed Mozilla CTO Brendan Eich (the original creator of JavaScript) and Mozilla's vice president of engineering, Mike Shaver. They say that tracing optimization will 'take JavaScript performance into the next tier' and 'get people thinking about JavaScript as a more general-purpose language.' The eventual goal is to make JavaScript run as fast as C code. Ars reports: 'Mozilla is leveraging an impressive new optimization technique to bring a big performance boost to the Firefox JavaScript engine. ...They aim to improve execution speed so that it is comparable to that of native code.
in Open Source
via Slashdot @ 12:22 23rd Aug
- Related
Mozilla Corp. has released the first preview of Firefox 3.1, the fast-track update that the open-source company has pegged with a late 2008 or early 2009 ship date. Code-named "Shiretoko," named for a national park on Japan's northern-most island of Hokkaido, Firefox 3.1 Alpha 1 was delayed several days because of a last-minute bug found in the Mac OS X version.
in Open Source
via Neowin.net @ 7:51 4th Aug
- Related
Search took 0.64 seconds.
|
|
