Tuesday, February 07, 2012
Register  Login
  Our sponsors   
  Users currently online   
Membership Membership:
Latest New User Latest: kevin
New Today New Today: 0
New Yesterday New Yesterday: 0
User Count Overall: 56
People Online People Online:
Visitors Visitors: 4
Members Members: 0
Total Total: 4
Online Now Online Now:
Wizardwrx
Viruswarn banner
you are here: Forums  Search

Welcome to the Viruswarning forums.  All your original content has been ported to the new forums as  well as new content and additional opportunities to interact with the authors of Viruswarn.com.  You can always access old content at www.leedrake.com/forum .  You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....

But at least it's all here.

Enjoy!
  Viruswarn Forums
Forums > Viruswarning Forum > Viruswarning archive
Subject: Firefox vulnerability in versions lower than 1.02

You are not authorized to post a reply.   
Author Messages
Lee Drake
Posts:238
04/08/2005 7:43 AM  
What it is Many users have switched to Mozilla's popular browser Firefox as an alternative to Internet Explorer to attempt to flee the constant security advisories associated with IE. Unfortunately the open source software seems to have roughly the same number of security flaws as IE. Secunia recently discovered a flaw in the Javascript processing that can cause a buffer overflow. Although this vulnerability isn't yet being exploited there is an example available for how to do so on Secunia's site. With the popularity of Firefox as a browser rising, users need to be just as aware of security issues with Firefox as with any browser. The vulnerability is not yet patched. The vulnerability has not yet been shown to allow remote code execution - though it could possibly reveal information from your system's memory. What you should do Until Firefox releases a version higher than 1.02 you should disable javascript in your Firefox browser. To Disable Javascript: Open Firefox. On the Tools menu, click Options. Click Web Features in the Options list. (Fig.1) Under the Web Features section, uncheck the box next to Enable JavaScript. Click the Advanced button to open the Advanced JavaScript Options box. (Fig. 2) UnCheck the boxes under Allow scripts to section that you want to allow. Click OK. Click OK This may cause some sites to operate improperly. The vulnerability doesn't affect Internet Explorer. Watch for an update to Firefox (source code patch is already released) that will address this issue in the near future. Further references Secunia advisory: http://secunia.com/advisories/14820/ Mozilla bug report: https://bugzilla.mozilla.org/show_bug.cgi?id=288688 This concludes this viruswarning notice. Lee Drake Aztek Computer Solutions, Inc. 274 N. Goodman St Suite B269 Rochester, NY 14607 the human side of computing Email: ldrake@azcomputer.net Web: www.azcomputer.net Office Phone: 585-242-2060 Fax number: 585-242-9441
Lee Drake
Posts:238
04/21/2005 7:45 AM  
What it is In a previous notice we notified you of some bugs in Firefox, which were tracked back to the Mozilla source code and affected all Mozilla based products. Both products now have patches available to fix those vulnerabilities. What you should do If you are a Firefox user you should update to version 1.0.3. If you are a Mozilla user you should update to version 1.7.7. Links to the download points are available below. Further resources Firefox version 1.0.3 http://www.mozilla.org/products/firefox/ Mozilla version 1.7.7 http://www.mozilla.org/products/mozilla1.x/ This concludes this viruswarning update. Lee Drake Aztek Computer Solutions, Inc. 274 N. Goodman St Suite B269 Rochester, NY 14607 the human side of computing Email: ldrake@azcomputer.net Web: www.azcomputer.net Office Phone: 585-242-2060 Fax number: 585-242-9441
You are not authorized to post a reply.
Forums > Viruswarning Forum > Viruswarning archive > Firefox vulnerability in versions lower than 1.02


ActiveForums 3.6
  Register or Login


Forgot Password ?
Copyright 2006 by OS-Cubed, Inc.   Terms Of Use  Privacy Statement