Nomad559
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:10 AM
Original message |
Firefox gets a fresh security update |
|
Firefox gets a fresh security updateMozilla has issued a security update for its Firefox open-source browser, just weeks after it released a large fix to address several browser security flaws. The Firefox 1.5.0.3 update is designed to address vulnerabilities in versions 1.5 through 1.5.0.2.
Malicious attackers could exploit the flaws to cause a denial-of-service attack, which in turn may allow them to take remote control of a user's system, according to an alert from security research company Secunia, which rates the flaw as "highly critical."
The flaws may be exploited when people attempt to engage a deleted component with designMode turned on. While this typically will crash the browser, it could also result in an attacker running malicious code, according to a Mozilla security advisory.
The latest security release follows one issued in mid-April. The 1.5.0.2 version was designed to address seven vulnerabilities, five of which were "critical" and could allow a malicious attacker to run code with virtually no user interaction.
|
babylonsister
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:13 AM
Response to Original message |
1. All that red; should I be worried? nt |
DRoseDARs
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:23 AM
Response to Reply #1 |
2. No, you should be annoyed. There's no reason to offend our eyes like that |
|
:thumbsdown:
But DO update your Firefox browser. ;)
|
lvx35
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:26 AM
Response to Original message |
|
so a user has to engage a page with design mode on, then enage a control they deleted? I didn't know what design mode was until I looked it up.
|
Bush_Eats_Beef
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:28 AM
Response to Original message |
4. Now that Firefox utilizes automatic updates... |
|
...these security patches are as painless as possible. I got a dialog box in version 1.5.0.2 stating that updates were ready to be installed and that Firefox would close. Very soon after that I'd been upgraded to version 1.5.0.3.
I love Firefox and use it as my primary browser. Because part of what I do for a living is Web Design, I have to rotate usage of I.E., Netscape, Opera, etc. to confirm the consistency of what I design. But Firefox got a boost from being "more secure" than I.E....and they DO address security flaws faster than Microsoft...but they succeeded in painting a bulls-eye on their backs. Anything branded as "more secure" is going to attract the malicious script kiddies. I think it's safe to anticipate more of these attacks in the future, but Firefox's team...Mozilla.org...knows this, and is on top of it.
The best defense is to use Firefox and rely on the automatic updates feature, but also have the best anti-virus, firewall, and anti-spyware programs you can afford. My preference is Norton AntiVirus (as part of SystemWorks), ZoneAlarm Pro, and Webroot Spy Sweeper.
I also STRONGLY urge anyone reading this to install the "Site Advisor" extension for Firefox. It's free now, but it has been acquired by MacAfee, so it won't be free forever. It gives you a safety rating on EVERY site you visit (and rates your Google search results so you don't click on a deceptive, malicious site):
www.siteadvisor.com :toast:
|
greyl
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 02:43 AM
Response to Reply #4 |
5. I agree with most everything you say except for |
|
Norton/Symantec.
I've been using AVG free ( www.grisoft.com ) for almost 2 years now, and like it much more than Norton. More frequent updates, Wayyyy less system resources, and no charge. I've never heard of the Site Advisor extension, will check that out.
|
Champion Jack
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 07:26 AM
Response to Reply #5 |
10. ever try to get rid of Norton? |
|
It leaves crap all over your system
|
Javamancer
(81 posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 08:20 AM
Response to Reply #5 |
|
AVG is a good product that doesn't molest a system like Norton does.
|
Birthmark
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 05:09 AM
Response to Original message |
6. I've never been able to download |
|
...any extensions in Firefox.
|
Cronus Protagonist
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 05:13 AM
Response to Reply #6 |
8. It won't go through my firewall either |
|
I'm still using Mozilla 1.3 because it's the newest one that doesn't use HTTP 1.1, which my firewall doesn't seem to like one bit.
|
drm604
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 08:20 AM
Response to Reply #6 |
11. Extensions are great! |
|
It's too bad that you can't take advantage of them. Being able to personalize it for your surfing style is the best feature of Firefox. I have a bunch of right-click context functions (search Google for selected text, run a whois on the domain of the current page, etc.) that I use constantly. I miss them when I have to use IE at work. Maybe you should check out the Mozilla site to see if they have a fix for your problem.
|
Hard_Work
(283 posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 12:25 PM
Response to Reply #11 |
|
For you people who have to use IE for work or whatever, Firefox has an extension called IE tab which allows Firefox to use the embedded IE engine within Firefox. It works great, and sites I used to have to view in IE can now be viewed in IE with the click of a button.
Also, if you need a really good FTP program, get the FireFTP extension. It's free and works great!
|
drm604
(1000+ posts)
Send PM |
Profile |
Ignore
|
Fri May-05-06 07:18 PM
Response to Reply #17 |
20. When I'm physically at work I have to use what's on the computer there. |
|
I can't install Firefox there so I'm stuck with IE.
I have Firefox at home and I have a "view in IE" extension for the occasional web page that doesn't work properly in Firefox (that happens because IE doesn't follow the standards and some sites are coded using IE's broken standards). Other than that very unusual broken page, I stick exclusively to Firefox at home.
|
Cronus Protagonist
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 05:12 AM
Response to Original message |
0007
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 05:28 AM
Response to Original message |
ecoalex
(718 posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 08:47 AM
Response to Reply #9 |
13. Norton/Symantec sucks, don't update daily, as Zone Alarm does |
|
I picked up a virus from Norton being so slow to update, don't buy their bullshit, they still don't update daily. ZA will update 2 maybe 3 times a day.
|
Last Stand
(379 posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 12:03 PM
Response to Reply #13 |
15. Norton SystemHOG? Yeah, they suck. |
|
If you actually CAN uninstall that program completely, just see how much faster your system works afterwards. It's amazing. They cause more problems with system speed, shutting down and freezing up than anyone but Roxio. And their customer support sucks. F them.
|
DS1
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 12:07 PM
Response to Reply #13 |
16. My computer at work uses Norton, it gets updates at least twice |
corporate_mike
(812 posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 11:45 AM
Response to Original message |
hedgehog
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:52 PM
Response to Original message |
18. I haven't been able to send e-mail since my son |
|
updated Firefox a week or so back. Norton just doesn't like the new browser. Will this update fix it? THe alternative is hunting down the original Norton Installation discs and reinstalling Norton.
|
no name no slogan
(1000+ posts)
Send PM |
Profile |
Ignore
|
Thu May-04-06 01:55 PM
Response to Original message |
19. No thanks, I'll stick with Lynx |
|
on my trusty Amiga, thankyouverymuch
|
DU
AdBot (1000+ posts) |
Fri Apr 26th 2024, 05:49 PM
Response to Original message |