Thursday, March 28, 2024
Search
  
Tuesday, July 13, 2004
 Mozilla patch fixes security hole
You are sending an email that contains the article
and a private message for your recipient(s).
Your Name:
Your e-mail: * Required!
Recipient (e-mail): *
Subject: *
Introductory Message:
HTML/Text
(Photo: Yes/No)
(At the moment, only Text is allowed...)
 
Message Text: The Mozilla Foundation has urged users of its open-source Mozilla Application Suite, Firefox browser and Thunderbird e-mail client to download a small patch to work around a security vulnerability discovered this week.

The patches download a configuration change which disables the use of the :shell external protocol handler for running external programs by clicking on a hyperlink.

The security handling of this command may enable attackers to run arbitrary programs on Windows systems, although there are no problems for Mozilla users running other operating systems such as MacOS, Linux and other Unix variants, Mozilla said in a statement on its Web site.

The vulnerability affects Mozilla (version 1.7.0 and earlier), Firefox (0.9.1 and earlier), and Thunderbird (0.7.1 and earlier)

Full new versions of the free products are also available from the site, Mozilla said.

From DIGIT

 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2024 - All rights reserved -
Privacy policy - Contact Us .