Wednesday, May 3rd, 2006...5:00 am...by:
Mozilla patches Firefox security bug
By Robert McMillan, IDG News Service
Mozilla has released an update to its Firefox browser, fixing a known security flaw in the open-source software.
The bug, reported last week, relates to the way Firefox handles JavaScript code. It could be exploited by attackers to crash an unpatched browser, and, in theory, could also provide them with a way to trick the browser into running malicious code, Mozilla said in a security alert.
The problem has to do with an error caused when Firefox handles certain unexpected “contentWindow.focus()” JavaScript code. It can be circumvented by disabling Firefox’s JavaScript handling capability.
Users of the older Firefox 1.0 browsers and the Mozilla Suite 1.7 are not affected by the flaw, and Firefox 1.5 users should soon start to receive software patches under the browser’s automatic update system.
Mozilla developers said last week that they had reduced the number of features in the 1.5.0.3 update in order to speed up the release of this security fix.
Release notes for the 1.5.0.3 browser can be found here.
- Mozilla to Update Firefox (again) If you are a user of Firefox, you should make...
- Mozilla Fixed Eight Bugs In Firefox If you use Firefox, you will be glad to know...
- Firefox Web Site Browser Upgraded from eweek Mozilla has released a new version of the...
- Download Mozilla Firefox 2.0 After much anticipation and excitement, Mozilla Firefox 2.0 is finally...
- Patches Released for Internet Exporer Web Site Browsers from e-week Microsoft's dominant Internet Explorer browser has undergone a...
Leave a Reply