NOW READ THIS
("Security Advisory")

Go Back

---

Submitted by: Bill Hickey
NCVA List Master

NRT-0078 FIREFOX Patch for 2.0.0.2:

The Mozilla foundation has published a fix for a "critical" JavaScript vulnerability in the FIREFOX browser and the SeaMonkey application suite (think Netscape Communicator here). The fix, released on Monday, 05MAR, targets FIREFOX 2.0.0.2 and 1.5.0.10 as well as SeaMonkey versions 1.1.1 and 1.0.8. An earlier fix for a JavaScript problem allowed scripts from web content to execute arbitrary code, the Mozilla Foundation said in their security update. The vulnerability allowed uniform resource identifiers (URIs) in image tags to be executed even if JavaScript was disabled in the program preferences. Mozilla's THUNDERBIRD email client was NOT affected by this vulnerability.

(IDG News Service 06MAR07)

Last Modified: Wednesday, 14-Mar-2007 10:56:06 EST