|
Mozilla Firefox URI Splitting Security Bypass Vulnerability: related news
Tags:
bypass firefox mozilla security splitting uri vulnerability
As part of Mozilla Corporation's ongoing stability and security update process, Firefox 2.0.0.16 is now available for Windows, Mac, and Linux for free download from http://www.mozilla.com/firefox/all-older.html. We strongly recommend that all Firefox users upgrade to this latest release. If you already have Firefox 2.x, you will receive an automated update notification within 24 to 48 hours. This update can also be applied manually by selecting "Check for Updates?" from the Help menu. For a list of changes and more information, please review the Firefox 2.0.0.16 Release Notes at: http://www.mozilla.com/firefox/2.0.0.16/releasenotes/ Note: Firefox 2.0.0.x will be maintained with security and stability updates until mid-December, 2008. All users are encouraged to upgrade to Firefox 3.
in Open Source
via LWN @ 9:48 18th Jul
- Related
As part of Mozilla Corporation's ongoing stability and security update process, Firefox 3.0.1 is now available for Windows, Mac, and Linux for free download from http://getfirefox.com/. We strongly recommend that all Firefox users upgrade to this latest release. If you already have Firefox 3.0, you will receive an automated update notification within 24 to 48 hours. This update can also be applied manually by selecting "Check for Updates?" from the Help menu. For a list of changes and more information, please review the Firefox 3.0.1 Release Notes at: http://www.mozilla.com/firefox/3.0.1/releasenotes/ Note: All Firefox 2.0.0.x users are encouraged to upgrade to Firefox 3.0.1 by downloading it from http://getfirefox.com/. (follow-up: mozilla.
in Open Source
via LWN @ 9:48 18th Jul
- Related
The Mozilla Foundation plans to develop a better model for gauging the security of its Firefox web browser. In contrast to Microsoft, the number of officially provided security updates is not to be the sole parameter used. According to the method in which Microsoft measures security, an absence of patches would equate to a high degree of security. The Microsoft approach is further illustrated by its claim that Vista is still more secure than other operating systems. In contrast to this approach, the Mozilla Foundation wants its evaluation to include a variety of factors involved in the development process and the techniques and tools used in it. The sequence of the process from the time a security vulnerability is reported until a patch is distributed is also to be analysed.
in Open Source
via OSDir.com @ 13:06 9th Jul
- Related
Vulnerability in Firefox and other Mozilla programs Bonn - Several security holes have been discovered in Firefox and other software from Mozilla. The Thunderbird e-mail program and the Seamonkey program suite have also been affected. Users should update their software as soon as possible once patches become available, recommends the German Federal Agency for Security in Information Technology (BSI) in Bonn.
in Open Source
via Topnews.in @ 12:42 17th Aug
- Related
Bonn - Several security holes have been discovered in Firefox and other software from Mozilla. The Thunderbird e-mail program and the Seamonkey program suite have also been affected. Users should update their software as soon as possible once patches become available, recommends the German Federal Agency for Security in Information Technology (BSI) in Bonn. The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as well as to Seamonkey. In the latter case, any version prior to 1.1.11 is vulnerable to hacker attacks. Those who do not receive automated updates can download them manually at http://www.mozilla.com/firefox or http://www.seamonkey-project.org/releases.
in Open Source
via Earthtimes.org @ 5:40 17th Aug
- Related
An anonymous reader writes "Just a week after Mozilla shipped Firefox 3.0, the open-source developer has proposed ship dates for the next version that, if approved, would produce an alpha release next month and a final no later than early 2009. According to a draft schedule discussed at a recent meeting, Mozilla wants to have the first Firefox 3.1 developer preview ready by July, then move to a beta by August. The schedule slates final code delivery in the last quarter of this year or the first quarter of 2009. A month ago, when Mozilla first started discussing Firefox 3.1 internally, Mike Schroepfer, the company's vice president of engineering, said the upgrade's target ship date was the end of 2008. If Mozilla holds to that plan, Firefox 3.
in Open Source
via Slashdot @ 4:33 1st Jul
- Related
RedHat Enterprise Linux Desktop Workstation 5 client
in Open Source
via SecurityFocus @ 17:44 16th Jul
- Related
Home arrow Organizational arrow Xacti Delivers Free and Reliable Internet Security to Mozilla® Firefox® 3 Users with Web Security Gu
in Open Source
via PR-USA.net @ 14:25 20th Jul
- Related
iViZ, an Indian information security startup offering on-demand Penetration Testing, announced its discovery of a new class of vulnerability earlier this month at Defcon 16, the world's leading security conference. This vulnerability allows attackers to steal computer boot passwords and bypass the security of pre-boot authentication software like hard disk encryption tools. It affects general computer users, enterprises, governments and can result in unauthorized access or theft of confidential data. Incidentally, in 2007 the global loss due to data theft is estimated to be USD 40 Billion.
in Computer Security
via United News of India @ 9:40 1st Sep
- Related
Tags: Mozilla Firefox 3.0, Mozilla Firefox, Critical Vulnerability, XSS, Mozilla Firefox 2.0, MFSA, Web Browsers, Internet, Ryan Naraine
in Open Source
via ZDNet @ 17:33 2nd Jul
- Related
ARMONK, NY, Aug 29 (MARKET WIRE) -- IBM (NYSE: IBM) today announced that Procter and Gamble (NYSE: PG) has selected products and services from IBM's Internet Security Systems (ISS) division to expand its global cyber-security initiative. The agreement will strengthen Procter and Gamble's (P&G) threat protection arsenal by streamlining the management of its layered security tools and ultimately can help deliver substantial savings in administrative costs. This simplified security approach will streamline the management and help increase the efficiency of P&G's cyber-security project. First developed in 2005, P&G pioneered a layered, preventative network protection and vulnerability assessment project to mitigate and eliminate major costly internal vulnerabilities.
in Computer Security
via Reuters @ 15:15 29th Aug
- Related
Mozilla Corp. has patched a pair of critical vulnerabilities in Firefox, taking the unusual step of updating the older version 2.0 on Tuesday but delaying the fixes for the newer version 3.0 until Wednesday. Both updates, labeled Firefox 2.0.0.16 and Firefox 3.0.1, plug two holes rated "critical" by Mozilla, which uses a four-step threat ranking system. Firefox 2.0.0.16 was posted to Mozilla's servers Tuesday afternoon.
in Open Source
via Neowin.net @ 19:28 16th Jul
- Related
On Thursday, Mozilla pushed out a new security update for its new Firefox browser. Version 3.0.1 for Windows and Mac addresses vulnerabilities in malformed GIF files on Mac OS X, command-line URLs that could launch multiple tabs when Firefox is not running, and a potential remote code execution by overflowing CSS reference counter.
in Open Source
via CNET News.com @ 18:33 17th Jul
- Related
Bonn (dpa) - Several security holes have been discovered in Firefox and other software from Mozilla. The Thunderbird e-mail program and the Seamonkey program suite have also been affected. Users should update their software as soon as possible once patches become available, recommends the German Federal Agency for Security in Information Technology (BSI) in Bonn.
in Open Source
via Bangkok Post @ 5:30 20th Aug
- Related
Chicago (IL) - Mozilla updated both Firefox 2 and 3 in order to plug security critical security holes, squash some annoying bugs and deliver a few user-centric tweaks. Although users are recommended to update their browser, TG Daily noticed that some popular add-ons for Firefox 3 are not yet compatible with the patched browser.
in Open Source
via Tom's Hardware UK @ 17:17 23rd Jul
- Related
Earthweb passes along a ZDNet article which notes, "In partnership with indie security consultant Rich Mogull, Mozilla has launched a valuable Security Metrics Project that could help to — we can only hope — put an end to the silly notion that patch-counting helps to determine a product's security posture. The idea is to develop a metrics model that goes beyond simple bug counts to accurately reflect the effectiveness of secure development efforts and the relative risk to users over time. Mogull has released a spreadsheet (.xls) with a preliminary version of the model and Mozilla's Window Snyder is actively seeking feedback to make the project open and meaningful."
in Web Developer
via Slashdot @ 7:13 7th Jul
- Related
Red Hat Security Advisory Synopsis: Â Â Â Â Â Critical: firefox security update Advisory ID: Â Â Â RHSA-2008:0569-01 Product: Â Â Â Â Â Red Hat Enterprise Linux Advisory URL: Â Â Â https://rhn.redhat.com/errata/RHSA-2008-0569.html Issue date: Â Â Â Â 2008-07-02 CVE Names: Â Â Â Â CVE-2008-2798 CVE-2008-2799 CVE-2008-2800 Â Â Â Â Â Â Â Â Â Â CVE-2008-2801 CVE-2008-2802 CVE-2008-2803 Â Â Â Â Â Â Â Â Â Â CVE-2008-2805 CVE-2008-2807 CVE-2008-2808 Â Â Â Â Â Â Â Â Â Â CVE-2008-2809 CVE-2008-2810 CVE-2008-2811 ===================================================================== 1. Summary: Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 5.
in Open Source
via OSZine @ 5:35 3rd Jul
- Related
Mozilla said Wednesday that it is investigating a new, low-risk vulnerability in its recently released Firefox 3 web browser that could permit an attacker to crash a victim's browser.
in Computer Security
via SC Magazine @ 22:17 30th Jul
- Related
Mozilla Corp. released its updated browser, Firefox 3.0, last month with a push to set a new world record for most number of downloads of a new release in a 24 hour period. Now results show that Firefox posted a 0.6% market share increase in June to 19% of the overall browser market. Safari and Opera also eked out small gains in June as well. These increases come at the expense of Microsoft's Internet Explorer which fell to 73%. The bulk of Firefox's increase came following the June 17 release of Firefox 3.0. All three alternative browsers hit all time highs with IE hitting a corresponding record low. If these trends continue, Firefox is expected to break 20% market share this month.
in Open Source
via Overclockers Club @ 0:18 3rd Jul
- Related
monkeymonkey writes "Mozilla has integrated tracing optimization into SpiderMonkey, the JavaScript interpreter in Firefox. This improvement has boosted JavaScript performance by a factor of 20 to 40 in certain contexts. Ars Technica interviewed Mozilla CTO Brendan Eich (the original creator of JavaScript) and Mozilla's vice president of engineering, Mike Shaver. They say that tracing optimization will 'take JavaScript performance into the next tier' and 'get people thinking about JavaScript as a more general-purpose language.' The eventual goal is to make JavaScript run as fast as C code. Ars reports: 'Mozilla is leveraging an impressive new optimization technique to bring a big performance boost to the Firefox JavaScript engine. ...They aim to improve execution speed so that it is comparable to that of native code.
in Open Source
via Slashdot @ 12:22 23rd Aug
- Related
Mozilla Firefox, the popular web browser, caused a stir with the original release, but apart from minor changes, visual improvements and security fixes, there haven’t been a wide range of new features since the original 1.x release. This is all about to change, with the release of Firefox 2.0. Windows version available to download from this page.
in Open Source
via VNUNet.com @ 7:37 2nd Jul
- Related
Mozilla welcomes you to attend the 2008 Mozilla Firefox 3 launch party, taking place on Wednesday July 9th at the fabulous Club Eve in Piccadilly. Put on your glad rags and join Mozilla to see in the summer of 2008. An evening of fun, networking and dancing late into the evening, where else would you rather be on a barmy summer evening in London? There are free drinks until late courtesy of our friends at eBay and Glaxstar. There will also be a special announcement of a Guinness World Record.
in Open Source
via Netimperative @ 18:43 1st Jul
- Related
Secunia researchers detected numerous security vulnerabilities in the Mozilla Firefox 2.0x Web browser, many of which enable malicious attackers to hack into vulnerable systems and either shut down or take complete control of a user's computer. Researchers at Secunia, a Copenhagen, Denmark-based security company specializing in vulnerability assessment and management, issued a security advisory Wednesday, warning users of multiple errors they deemed "highly critical."
in Open Source
via Neowin.net @ 16:03 3rd Jul
- Related
PRNewswire-FirstCall/ -- Radware, RDWR, the leading provider of integrated application delivery solutions for business-smart networking, today announced it has found a vulnerability that may cause application Denial of Service (DoS) in Firefox 3, Mozilla's latest Web browser application.
in Open Source
via PR Newswire via MSN Money @ 8:19 30th Jul
- Related
Search took 0.26 seconds.
|
|
