Firefox released, fixes two security holes

— 11:11 AM on July 31, 2007

Mozilla has released yet another update to its popular Firefox web browser. This time, the update brings the browser up to version, and it fixes a couple of security bugs. One of those bugs was another manifestation of Firefox's weaknesses in handling uniform resource identifiers (URIs) with third-party applications, which could in Mozilla's words, "cause the receiving program to mistakenly interpret a single URI as multiple arguments." In short, the flaw could allow a specially crafted page to run a malicious script through Firefox. This flaw has now been resolved, as has another hole that allowed privilege escalation attacks through about:blank pages loaded by browser add-ons. Firefox can be downloaded here, and users of previous versions should be able to upgrade by clicking "Check for updates" in the browser's help menu.

Tip: You can use the A/Z keys to walk threads.
View options

This discussion is now closed.