Station.com
Sign In Join Free Why Join?
Sony Online Entertainment
Community Store My Account Help
  Search   |   Recent Topics   |   Member Listing   |   Back to home page
Firefox isn't so secure after all.
Search inside this topic:
The Matrix Online » Top » The Lounge » Off-Topic Discussion Previous Topic  |  Next Topic
Author Message
12/18/2008 16:56:27
    Subject: Firefox isn't so secure after all.
phi


Systemic Anomaly

Joined: Aug 18, 2005
Messages: 3393
Location: [SERVER]Recursion [FACTION]Kings of Never [REAL]Systems Administrator
Offline

Well after the recent hallabaloo about MSIE having a remote code execution flaw in its XML parser I just recieved notice from McAffe that a similar flaw exists in Mozilla/FireFox.

And they patched it as fast as Microsoft did. Check you are up to date.

Mozilla Firefox Layout Engine Remote Code Execution Vulnerabilities [MTIS08-213-A]

Threat Identifier(s)

CVE-2008-5500; CVE-2008-5501

Threat Type

Vulnerability

Risk Assessment

Medium

Main Threat Vectors

Web; E-Mail

User Interaction Required

Yes

Description

Memory corruption vulnerabilities in Mozilla Firefox, Thunderbird, and SeaMonkey may lead to remote code execution. The flaws are specific to crashes in the layout engine within Firefox and other Mozilla products that share the same browser engine. Under certain circumstances, memory can become corrupted, leaving the application in an exploitable state.

Importance

Low. On December 16 Mozilla released a patch to address this issue.
The Matrix Online » Top » The Lounge » Off-Topic Discussion
Go to:   

Version 2.2.7.43