Added on 11 Sep 2009(1216 Views)
A couple of days ago the Mozilla Foundation rolled out an update to its web browser, mainly Firefox 3.5.3. The update is meant to make the Firefox browser a more stable piece of software and plug several security holes affecting the application. To be more precise, Firefox 3.5.3 fixes a total of 4 security vulnerabilities: three are critical and one is low.Just to put things in perspective, Mozilla uses a 4-tier security rating: low, moderate, high and critical. Out of the security issues that Firefox 3.5.3 addresses one has been given the low security rating and the remaining three have been rated as critical. The low security vulnerability, MFSA 2009-50 refers to the fact that “the default Windows font used to render the locationbar and other text fields was improperly displaying certain Unicode characters with tall line-height. In such cases the tall line-height would cause the rest of the text in the input field to be scrolled vertically out of view.” A person with malicious intent could exploit this vulnerability an conceal the URL of a malicious site from the user.
The remaining three, critical vulnerabilities are:
MFSA 2009-47 – the browser would crash with evidence of memory corruption. If successfully exploited, a person with malicious intent could run arbitrary code.
MFSA 2009-49 – one could manipulate the columns of a XUL tree element which would “leave a pointer owned by the column pointing to freed memory.” A person with malicious intent that successfully exploits this vulnerability could crash and run arbitrary code on the targeted computer.
MFSA 2009-51 – JavaScript code can be run with elevated privileges because of a vulnerability in BrowserFeedWriter. A person with malicious intent could exploit this to run malicious code with chrome privileges.
You are very well advised to update your Firefox 3.5 browser if you have not done so already. Only by keeping an up-to-date browser can you protect yourself from people with malicious intent that want to exploit a vulnerability and compromise your system.
If you would like to get Firefox 3.5.3, you can download it straight from FindMySoft here.
Alternatively you can get it from the official Mozilla Firefox web page here.
FindMySoft Update
We've launched a brand new How To section. You can check it out here.
Don't forget to:
RSSTags: Mozilla, Firefox, Browser, Update, Security
Link to this article:
Add comment:
Software News
Chromium OS Goes Open-Source
This summer Google let the world know that it is working on a new operating system meant for the user that spends most of his time online. The operating system – aptly named Chrome OS because it is a natural extension...
This summer Google let the world know that it is working on a new operating system meant for the user that spends most of his time online. The operating system – aptly named Chrome OS because it is a natural extension...
20 Nov 2009
Office 2010 Beta Downloads Available to the Public
Earlier this week Redmond-based software giant Microsoft announced that Office 2010 became available for download as a Beta. The catch was that only ...
Earlier this week Redmond-based software giant Microsoft announced that Office 2010 became available for download as a Beta. The catch was that only ...
20 Nov 2009
Mozilla Releases: Firefox 3.6 Beta 3
The development process of the Firefox 3.6 browser is moving along rapidly. The first Beta version was released at the start of the month; Beta 2 was released about two weeks after Beta 1. About a week has passed since...
The development process of the Firefox 3.6 browser is moving along rapidly. The first Beta version was released at the start of the month; Beta 2 was released about two weeks after Beta 1. About a week has passed since...
20 Nov 2009
New Labs Feature for Gmail: Green Robot!
The software developers at Google have announced the release of a new Gmail Labs offering called Green Robot! This new offering is meant to improve the Gmail Chat user experience by letting the ...
The software developers at Google have announced the release of a new Gmail Labs offering called Green Robot! This new offering is meant to improve the Gmail Chat user experience by letting the ...
20 Nov 2009
Opera Mobile 10 Beta for Windows Mobile Is Out Also
Opera Software, the company that we all know for making the innovative and feature rich Opera web browser, has released Opera Mobile 10 Beta for Windows Mobile-powered devices. This release follows in the...
Opera Software, the company that we all know for making the innovative and feature rich Opera web browser, has released Opera Mobile 10 Beta for Windows Mobile-powered devices. This release follows in the...
19 Nov 2009
Beta Testing is Over, Stable Version of Trillian for iPhone Released
The focus so far has been on desktop version of this multiprotocol instant messaging software application, Trillian Astra (version 4.1). Today is time to switch focus away from the desktop version and onto something a bit more...
The focus so far has been on desktop version of this multiprotocol instant messaging software application, Trillian Astra (version 4.1). Today is time to switch focus away from the desktop version and onto something a bit more...
19 Nov 2009
Recommended Tools
Registry Booster 2010 Enhanced, deeper and faster error scan performance. Now also in 5 languages! Free Scan
Driver Scanner 2009
Fast and easy, it boosts performance by scanning for, downloading & installing driver updates
Fast and easy, it boosts performance by scanning for, downloading & installing driver updates
SpeedUpMyPC 2009
How fast is your PC really running? Turbo-charge your Internet and PC performance here
How fast is your PC really running? Turbo-charge your Internet and PC performance here
Nero Burning ROM
LimeWire Basic
Yahoo! Messenger
Winamp
Mozilla Firefox
eMule
BitComet
iTunes
Google Earth
uTorrent