
Updates for Thunderbird and SeaMonkey too...
By Joris Evers
Published: 9 November 2006 08:55 GMT
Mozilla has released updates for its Firefox browser, Thunderbird email application and the SeaMonkey application suite to fix "critical" security vulnerabilities.
The vulnerabilities affect 1.5 versions of Firefox and Thunderbird as well as version 1 of the SeaMonkey suite, Mozilla said in its security advisories. The bugs do not affect Firefox 2.0, the latest version of the browser released late last month.
Security monitoring companies Secunia and the French Security Incident Response Team, or FrSirt, deem the issues "highly critical" and "critical", respectively. People who use vulnerable versions of the Mozilla products are urged to upgrade to the fixed versions, both companies said.
Got two seconds?
Make your voice heard - take our latest poll.
Mozilla has fixed a number of bugs that could cause its products to crash or, in some cases, be exploited to hijack a PC, it said in an advisory. Other problems that have been repaired include a flaw that could be abused to run malicious JavaScript and a vulnerability that could let miscreants fake digital signatures, Mozilla said.
Secunia said in its alert: "The security vulnerabilities could be exploited by malicious people to bypass security restrictions, conduct cross-site scripting attacks and potentially compromise a vulnerable system."
Mozilla plans to support Firefox 1.5 until October 2007, one year after it shipped Firefox 2. The security flaws are fixed in Firefox 1.5.0.8, Thunderbird 1.5.0.8 and SeaMonkey 1.0.6. The previous Firefox security update was released in September.
Joris Evers writes for CNET News.com
Be able to assess internal and external scan reports--identify false positives, research vulnerabilities, communicate results to IP management and ...
You will be responsible for all security incidents, incident response, IDS analysis, threats and tracking vulnerabilities of the infrastructure.Due ...
Be involved with producing functional and technical specifications for projects to enable: Be involved with ensuring key stage deliverables are being ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Is Your Enterprise Architected for Tomorrow's Growth?
Improving IT service delivery through an integrated approach to software asset management...
The Real Reason Executive Participation Creates IT Project Success
Information Management, BPM and Integration: Achieving Cost Efficiency in the Financial...
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
silicon.com staff Inbox: Social networking can help you secure a job Plus: Open source advocates hit back at CIOs and netbooks fail 'fit for work' test
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead