May 3, 2006 8:29 AM PDT
Firefox gets a fresh security update
The Firefox 18.104.22.168 update is designed to address vulnerabilities in versions 1.5 through 22.214.171.124.
Malicious attackers could exploit the flaws to cause a denial-of-service attack, which in turn may allow them to take remote control of a user's system, according to an alert from security research company Secunia, which rates the flaw as "highly critical."
The flaws may be exploited when people attempt to engage a deleted component with designMode turned on. While this typically will crash the browser, it could also result in an attacker running malicious code, according to a Mozilla security advisory. Mozilla oversees the development of the Firefox browser.
The organization said it released the 126.96.36.199 version early to tackle the security issue. As a result, plans for a larger update will be bumped to version 188.8.131.52.
The latest security release follows one issued in mid-April. The 184.108.40.206 version was designed to address seven vulnerabilities, five of which were "critical" and could allow a malicious attacker to run code with virtually no user interaction.
10 commentsJoin the conversation! Add your comment