Tuesday, September 30, 2014
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
TSMC and ARM Announce 16nm FinFET Silicon with 64-bit ARM big.LITTLE Technology
Google To Unveil New Music Services
Europe Says Ireland Helped Apple Pay Less Taxes
Pioneer Develops Rearview Mirror Telematics Unit With LTE Connectivity
Intel and Mitsubishi Electric Collaborate to Create Factory Automation Systems
Belkin Announces New Thunderbolt 2 Express Dock HD for Mac and PC Computers
iPhone 6 And iPhone 6 Plus Available in China By October 17
Apple Patches Bash Vulnerability in OS X
Active Discussions
Yamaha CRW-F1UX
help questions structure DVDR
Made video, won't play back easily
Questions durability monitor LCD
Questions fungus CD/DVD Media, Some expert engineer in optical media can help me?
CD, DVD and Blu-ray burning for Android in development
IBM supercharges Power servers with graphics chips
Werner Vogels: four cloud computing trends for 2014
 Home > News > General Computing > Securit...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, July 13, 2004
Security hole found in Mozilla browser


Developers at the open-source Mozilla Foundation have confirmed that the latest version of their Web browsers have a security flaw that could allow attackers to run existing programs on the Windows XP operating system.

The flaw, known as the "shell" exploit, was publicized Wednesday on a security mailing list, along with a link to a fix for the problem. Updated versions of the affected software programs, which include the Mozilla, Firefox and Thunderbird browsers, have been released.

Developers said the flaw affects only Windows users, not computers running the Macintosh and Linux operating systems. Like recent Internet Explorer vulnerabilities, this flaw only allows the attacker the ability to run an existing program and requires that security problems in other applications be exploited to gain further access.

The flaw can be used to pass a file extension to the operating system. Windows XP will then run the helper application corresponding to that file extension. The main threat comes from the ability of an attacker to pass parameters to exploit vulnerabilities in a specific helper application, which could give an outsider access to the system. A shell problem could also cause the computer to freeze.

The news comes as Microsoft has been dealing with a string of security flaws found in its Internet Explorer browser during the past several weeks. Some researchers had begun recommending that people worried about online security stop using the IE browser altogether.

Microsoft recommends that Web surfers using Internet Explorer keep abreast of the latest security warnings, and go to the company's Protect Your PC site.

Mozilla developers said that future versions of the Firefox Web browser would have automatic update notifications that would make it easier to notify users about security fixes.

From ZDNet



Previous
Next
Pointsec's trouble-free encryption, authentication solution adds support for removable media        All News        New PS3 details emerge; console to be playable at E3 2005
Pointsec's trouble-free encryption, authentication solution adds support for removable media     General Computing News      New PS3 details emerge; console to be playable at E3 2005

Source Link Get RSS feed Easy Print E-Mail this Message

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2014 - All rights reserved -
Privacy policy - Contact Us .