Friday, July 17, 2009

Firefox security update

Two days ago I posted about major security bugs in Firefox and Internet Explorer that were being exploited by malware (so called "Day Zero" exploits, where no security fix was available). Firefox has a fix out, which is close to record time for this sort of response.

Firefox 3.5.1 closes the hole opened in Firefox 3.0. Remember, if you (like me) are still on Firefox 3.0, you are not vulnerable to tuesday's exploit.

Still no word when Microsoft will have a fix. This is an example of why it's a good idea to move to Firefox if you're still on Internet Explorer.


Marcus said...

Simple heap spray - most NIPS/HIPS worth their salt should catch it...

Anonymous said...

Reason 341 why I run Firefox and Linux