The two most popular web browsers on the market each received security updates last week. Microsoft and Mozilla posted patches to address flaws in the latest versions of Internet Explorer 7 and Firefox.
The Mozilla patch addresses eight security flaws in versions 2 and 3 of the browser. Among the fixes are several vulnerabilities which could be targeted in cross-site scripting attacks, as well as one which could be exploited to remotely execute code.
Ironically, the update also brings with it a drop in security protection for some Firefox users. The 2.0.0.19 update signifies the end of security support for version 2 of the browser.
Mozilla will also be shutting down anti-phishing protections for Firefox 2 owing to Google’s ending support for the browser’s phishing site blacklist.
Mozilla is advising any users who have not already upgraded to the latest version of the browser to do so.
Meanwhile, Microsoft issued an out-of-cycle update for Internet Explorer 7. The patch was announced yesterday in response to a series of attacks on an unpatched flaw.
The update addresses a vulnerability in the way IE7 handles certain text files. If exploited, an attacker could use the flaw to remotely execute code on a targeted system.
The release comes just eight days after Microsoft issued its monthly patch for separate flaws in IE, Office and Windows.
Subscribers 0
Fans 0
Followers 0
Followers