Published in News

Firefox 2.0.0.5 is out

by on18 July 2007

Image

Fixes ability to run firefox from IE


Firefox 2.0.0.5 is out and this is mainly a security update. If you use firefox and we know that majority or our readers does we advise you to update.

The most severe one will fix the ability to execute Firefox remotely by
code execution from Internet Explorer. This was a big one. The second one fixes privilege escalation using an event handler attached to an element not in the document.

The last critical one will fix crashes with evidence of memory corruption. Two fixes marked as high will fix unauthorized access to wyciwyg:// documents and XSS using addEventListener and setTimeout bugs.

The last two fixes have low priority and will fix the file type confusion due to %00 in name and Frame spoofing while window is loading.

Rate this item
(0 votes)