Wednesday, July 16, 2008 8:17 AM
cmosby
Firefox 2.0.0.16 fixes two security vulnerabilities - SANS Internet Storm Center
I wish IE updated this fast!
Firefox 2.0.0.16 fixes two security vulnerabilities
Published: 2008-07-16,
Last Updated: 2008-07-16 10:02:33 UTC
by Maarten Van Horenbeeck (Version: 1)
0 comment(s)
The Mozilla Foundation has just released Firefox 2.0.0.16 which fixes two critical security vulnerabilities:
MFSA 2008-35 (CVE-2008-2933) Command-line URLs launch multiple tabs when Firefox not running
MFSA 2008-34 (CVE-2008-2785) Remote code execution by overflowing CSS reference counter
It should be noted that the second vulnerability would also affect users that run Thunderbird with Javascript enabled for e-mail reading. Needless to say this is a no-no. We recommend users to upgrade their Firefox installation. Firefox 2.x will still be supported only until mid-December, so investigating and planning an upgrade path to Firefox 3 is advised.
Keywords: firefox vulnerability patch
Filed under: Patch Management, Browser Wars, Firefox, Internet Applications, Security, Software Vulnerabilites