Firefox gets a fresh security update

By Dawn Kawamoto
Posted on ZDNet News: May 3, 2006 3:29:00 PM

Mozilla has issued a security update for its Firefox open-source browser, just weeks after it released a large fix to address several browser security flaws.

The Firefox 1.5.0.3 update is designed to address vulnerabilities in versions 1.5 through 1.5.0.2.

Malicious attackers could exploit the flaws to cause a denial-of-service attack, which in turn may allow them to take remote control of a user's system, according to an alert from security research company Secunia, which rates the flaw as "highly critical."

The flaws may be exploited when people attempt to engage a deleted component with designMode turned on. While this typically will crash the browser, it could also result in an attacker running malicious code, according to a Mozilla security advisory. Mozilla oversees the development of the Firefox browser.

The organization said it released the 1.5.0.3 version early to tackle the security issue. As a result, plans for a larger update will be bumped to version 1.8.0.4.

The latest security release follows one issued in mid-April. The 1.5.0.2 version was designed to address seven vulnerabilities, five of which were "critical" and could allow a malicious attacker to run code with virtually no user interaction.

SponsoredWhite Papers, Webcasts, and Downloads

The True Costs of Virtual Server Solutions VMware In an economic environment that is repeatedly heralding the message "do ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now

Talkback
Most Recent of 39 Talkback(s)

Thread View
Flat View

Why I think Firefox is better,: easy.... If it got so many flaws I wanted to let go of it I could simply UN-INSTALL it. Unlike IE which on my Windows machine it is intergrated into my OS leaving my whole system at risk (thank you MS!)... (Read the rest); Posted by: devlin_X Posted on: 05/06/06 You are currently: a Guest | Log in | Terms of Use

"just weeks" eh? Great spin! LoCal | 05/03/06

Browser wars... jinko | 05/03/06

Hilarious video! Thanks for the link. (nt) LoCal | 05/03/06

Firefox gets a fresh security update Loverock Davidson | 05/03/06

You know Shelendrea | 05/03/06

Diito hoozafrizitz | 05/03/06

Ditto hoozafrizitz | 05/03/06

Outing bugs rbriem | 05/03/06

They tried that ... gregory.marx@... | 05/03/06

You're undoubtedly right about that however... maldain | 05/03/06

I do understand that Shelendrea | 05/03/06

You Know... rbretz | 05/03/06

You must not know Linux very well... Codedigital | 05/04/06

Firefox is just a better product matthew.graff@... | 05/03/06

You know, FF just did the same. xuniL_z | 05/03/06

Why I think Firefox is better, devlin_X | 05/06/06

Fresh update but no fresh paint Boot_Agnostic | 05/03/06

Mozilla seamonkey just works cls@... | 05/03/06

As much as I think MS-IE (ActiveX) is a virus... ju1ce | 05/03/06

Correction IceTheNet@... | 05/03/06

Journo bias..... ianintheworld@... | 05/03/06

I'd agree if it weren't so true maldain | 05/03/06

Journo bias..... ianintheworld@... | 05/03/06

Big difference tic swayback | 05/03/06

Nice Save IceTheNet@... | 05/03/06

doesn't anyone here work with software? xuniL_z | 05/03/06

I guess the many eyes were closed... No_Ax_to_Grind | 05/03/06

At least they are fixing things in a timely manner itanalyst | 05/03/06

Timely, umm, you mean like last week No_Ax_to_Grind | 05/03/06

Erm.. Doesn't MS still have a half patched hole? thatxbxtchxnicoll | 05/03/06

Oops, forgot the other links thatxbxtchxnicoll | 05/03/06

That is so untrue IceTheNet@... | 05/03/06

Bull Crap. They just released a mega patch No_Ax_to_Grind | 05/03/06

It wasn't a patch Edward Meyers | 05/03/06

Think of it this way NAG Hrothgar - PCLinuxOS User | 05/03/06

You Are Late trh1948@... | 05/03/06

I'm Using 3.0a1 Edward Meyers | 05/03/06

timely Release... Rick S._z | 05/03/06

Nice to talk about bug fixes georgep_z | 05/03/06

What do you think?

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

White Papers, Webcasts, and Downloads

The True Costs of Virtual Server Solutions VMware In an economic environment that is repeatedly heralding the message "do ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now

Enterprise Applications

Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!

New Online Dashboard

Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline

Firefox gets a fresh security update

SponsoredWhite Papers, Webcasts, and Downloads

What do you think?

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

White Papers, Webcasts, and Downloads

Enterprise Applications

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads

Firefox gets a fresh security update

SponsoredWhite Papers, Webcasts, and Downloads

What do you think?

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Keep up with ZDNet

White Papers, Webcasts, and Downloads

Enterprise Applications

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads