funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Firefox 2.0.0.13 Available

From: "Paul Ferguson" <fergdawg () netzero net>
Date: Wed, 26 Mar 2008 02:18:53 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Security issues from the release notes:

MFSA 2008-19 XUL popup spoofing variant (cross-tab popups)
MFSA 2008-18 Java socket connection to any local port via LiveConnect
MFSA 2008-17 Privacy issue with SSL Client Authentication
MFSA 2008-16 HTTP Referrer spoofing with malformed URLs
MFSA 2008-15 Crashes with evidence of memory corruption (rv:1.8.1.13)
MFSA 2008-14 JavaScript privilege escalation and arbitrary code execution

http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox
2.0.0.13

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFH6bKGq1pz9mNUZTMRAqeXAKDVUorbOW9JLHcL0/vYoFDwZAAESACfTIdJ
PwXwaZ3JW60Vat0DXFUUk50=
=Dka6
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: