DOWNLOAD: Best tool to repair Windows problems & optimize system performance | Best driver update software for your PC
 
Results 1 to 6 of 6

Thread: Firefox 3.5.1: other critical vulnerability

  1. #1
    leofelix is offline Member
    Join Date
    Oct 2008
    Location
    Italy
    Posts
    1,668

    Angry Firefox 3.5.1: other critical vulnerability

    Firefox 3.5.1 is affected by a critical vulnerabilty

    More:




    Firefox 3.5 Unicode Data Remote Stack Buffer Overflow Vulnerability, FireFox 3.5.1 affected, no patch - Donna's SecurityFlash

    and

    Another Critical Firefox Vulnerability Emerges
    Last edited by leofelix; 19th July 2009 at 19:15.

  2. #2
    seti is offline Member
    Join Date
    Nov 2008
    Posts
    1,923

    Default

    Thanks for this very important update. I have taken the steps to disable javascript in at the moment. Fortunately I only use it as as subs. browser and do everything important on my main browser.

  3. #3
    tweakwindows's Avatar
    tweakwindows is offline Microsoft MVP
    Join Date
    Jul 2008
    Location
    intowindows.com
    Posts
    1,285

    Default

    I am completely back to IE8

  4. #4
    johnny.rotton's Avatar
    johnny.rotton is offline Gold Member
    Join Date
    Jan 2009
    Location
    South, UK
    Posts
    877

    Default

    Quote Originally Posted by tweakwindows View Post
    I am completely back to IE8
    I never left I only have one browser installed now IE8

  5. #5
    tweakwindows's Avatar
    tweakwindows is offline Microsoft MVP
    Join Date
    Jul 2008
    Location
    intowindows.com
    Posts
    1,285

    Default

    ^ That's great, Johnny Actually I was on FF due the sheer number of add-ons.. But now, I have decided to stay with IE 8 as I am doing some work realted to IE..

  6. #6
    leofelix is offline Member
    Join Date
    Oct 2008
    Location
    Italy
    Posts
    1,668

    Default

    Thank you all for your replies.
    According to Mozilla Security Team this bug is not exploitable:

    milw0rm 9158 “stack overflow” crash not exploitable (CVE-2009-2479) at Mozilla Security Blog

    Secunia updated its reports

    Mozilla Firefox Memory Corruption Vulnerability - Secunia Advisories - Vulnerability Information - Secunia.com

    and Internet Explorer 8 has a critical bug discovered more than one year ago and it is still unpatched

    Internet Explorer Charset Inheritance Cross-Site Scripting Vulnerability - Secunia Advisories - Vulnerability Information - Secunia.com

    ---------

    However I think that TraceMonkey JIT decompiler is terrific: I hope Firefox 3.6 will use another JIT rendering engine.

    I'm seriously thinking to get back to IE .. after 5 years of Firefox

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22