How to Check for Outdated Plugins

By Shamly, on July 23rd, 2010

Mozilla started the plugin check program to help users keep their plugins up to date. Outdated plugins are a major source of security and stability risk for web users.
Continue reading How to Check for Outdated Plugins

One comment   Techno   , , ,  

Firefox 3.6.7 fixes critical issues in 3.6.6

By Shamly, on July 22nd, 2010

Mozilla has shipped a mega patch for Firefox to fix a total of 14 moderate to critical security flaws that expose Web surfers to attacks by hackers.

Impact key:

  • Critical: Vulnerability can be used to run attacker code and install software, requiring no user interaction beyond normal browsing.
  • High: Vulnerability can be used to gather sensitive data from sites in other windows or inject data or code into those sites, requiring no more than normal browsing actions.
  • Moderate: Vulnerabilities that would otherwise be High or Critical except they only work in uncommon non-default configurations or require the user to perform complicated and/or unlikely steps.

Below is a list of bugs fixed in the latest release:

  • Cross-origin data leakage from script filename in error messages
  • Cross-domain data theft using CSS
  • Multiple location bar spoofing vulnerabilities
  • Characters mapped to U+FFFD in 8 bit encodings cause subsequent character to vanish
  • Same-origin bypass using canvas context
  • Cross-origin data disclosure via Web Workers and importScripts
  • Remote code execution using malformed PNG image
  • nsTreeSelection dangling pointer remote code execution vulnerability
  • nsCSSValue::Array index integer overflow
  • Arbitrary code execution using SJOW and fast native function
  • Plugin parameter EnsureCachedAttrParamArrays remote code execution vulnerability
  • Use-after-free error in NodeIterator
  • DOM attribute cloning remote code execution vulnerability
  • Miscellaneous memory safety hazards (rv:1.9.2.7/ 1.9.1.11)
One comment   General   , ,  

Firefox is the official web browser of IBM

By Shamly, on July 3rd, 2010

In a blog post released on July 1st Bob Sutor, said out loud that they are officially adding a new piece of software to the list of default common applications they expect IBM employees to use, and that’s the Mozilla Firefox browser.
Continue reading Firefox is the official web browser of IBM

Leave a comment   General   , ,  

Firefox 3.6.6 fixes crash protection issue

By Shamly, on June 28th, 2010

Firefox 3.6.6 has been released to fix the issues that most people were experiencing with the plugin-container or crash protection feature introduced in the 3.6.4 release recently as mentioned here. This latest release modifies the crash protection feature to increase the amount of time that plugins are allowed to be non-responsive before being terminated (Bug 574905).

What is plugin-container

In Firefox 3.6.4 and above, some plugins are loaded separately from Firefox in `plugin-container.exe`, allowing the main Firefox process (firefox.exe) to stay open even if a plugin crashes.

Which plugins are supported by plugin-container.exe?

For more information about plugins, see Using plugins with Firefox.

Update: A new version has been released which fixes several critical bugs that were present in version 3.6.6. All users are advised to update their browser to the latest version. Click here to read more about the update

One comment   General   , , ,  

Is Firefox Losing Foothold on Linux?

By Shamly, on June 16th, 2010

Firefox has been the default browser on Ubuntu for a long time. But now it looks like Firefox may not be included as the default browser on Ubuntu Netbook Edition 10.10. Ubuntu Netbook Edition has been optimized for smaller screens enabling it to work better on netbooks with the Intel Atom computer processor.

The change has not been finalized yet but Chrome seems like a good choice for netbooks since it has a minimal design which takes up less space than any of the other browsers. It is also very fast.

2 comments   Techno   ,  
Page 1 of 212