If you didn’t get the latest automatic update for Firefox 3.5 or 3.0 you an now download and install it manually either from the official web site of Mozilla, or by going to Check for Updates in the Help menu of your browser.
The Firefox 3.5.2 and Firefox 3.0.13 updates are meant to increase both browsing security and stability on Windows, Mac or Linux computers.
Firefox 3.0.13 fixes a previously detected vulnerability that could allow attackers run and install software without requiring your interaction, as well as a vulnerability that allowed gathering sensitive data from web sites and inject code to them.
Another solved issue, this time a moderate one, is the presence of several vulnerabilities that could be exploited if the user would have performed more than normal browsing actions.
Similar types of issues were also fixed in the Firefox 3.5 version.
In addition to these, Firefox 3.0.13 solved the following:
- location bar and SSL indicator spoofing via window.open() on invalid URL
- heap overflow in certificate regexp parsing
- compromise of SSL-protected communication
User of Firefox 3.5 can now get the latest release of this version, 3.5.2, with the following fixes:
- location bar and SSL indicator spoofing via window.open() on invalid URL
- Chrome privilege escalation due to incorrectly cached wrapper
- crashes with evidence of memory corruption
- data corruption with SOCKS5 reply containing DNS name longer than 15 characters
Related posts:
No comments yet.
RSS feed for comments on this post. TrackBack URL
