Firefox 1.0.2 Released
March 23, 2005, (Mountain View, CA). The Mozilla Foundation, a non-profit organization dedicated to preserving choice and promoting innovation on the Internet, today announced a security update for its Firefox Web browser. The update is a proactive security release to patch a bug identified by Internet Security Systems, a premier security research, products, and services company. No known exploits of the bug have been reported prior to the update's release.
"The Mozilla Foundation is deeply committed to providing its users with the safest Internet experience possible," said Chris Hofmann, director of engineering for the Mozilla Foundation. "To deliver our users the experience they deserve, we must stay ahead of the curve in patching potential vulnerabilities. For example, the bug patched in this update has no known real world exploits, and we were able to provide a quick response."
The Mozilla Foundation evaluates security issues on an ongoing basis and will issue security updates as warranted. Users are encouraged to download the software updates at www.mozilla.org.
Firefox has been widely praised for its stability, trustworthiness and innovative features including tabbed browsing, live bookmarks, built-in pop-up blocking, and hundreds of available extensions. SC Magazine, a leading security magazine, recently awarded the Mozilla Foundation with its Editor in Chief award. The browser has been downloaded more that 30 million times and is available in 28 languages.
Fixed in Firefox 1.0.3
MFSA 2005-36 Cross-site scripting through global scope pollution
MFSA 2005-38 Search plugin cross-site scripting
MFSA 2005-39 Arbitrary code execution from Firefox sidebar panel II
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-41 Privilege escalation via DOM property overrides
|All times are GMT +1. The time now is 22:27.|
Powered by vBulletin® - Copyright ©2000 - 2015, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO