Multiple vulnerabilities that could allow an attacker to install malicious code or steal personal data have been discovered in the Mozilla Suite and the Firefox browser.
Ian Latter, senior security consultant at Internet security specialist Pure Hacking, said that most of the vulnerabilities are based on the way the applications handle JavaScript. Another issue could allow malicious scripts to gain access to random pieces of memory, he said.
As security bugs swarm around the Firefox browser, volunteer marketers want to shore up the open-source project's security message. While the Mozilla Foundation made patches available for significant new security holes, Firefox partisans finally acknowledged that the core sales pitch for their browser may be vulnerable.
"The versions of Firefox up to version 1.0.3 have had terrible security risks," wrote one participant for the volunteer Firefox promotion, Spread Firefox. "I think these security risks have undermined the promise of Firefox as a more secure browser."
A flaw in McAfee Internet Security Suite 2005 could let employees sharing the same computer break into one another's files, according to security consultant iDefense. The vulnerability, which exists in the default settings applied during installation, gives anyone the same access rights on a PC as an IT administrator.
That, in effect, would let someone remove any restricted access specified on a PC. It could also let an employee install software prohibited by his employer. An employee who shares a computer with co-workers, for example, could then access colleagues' files or install programs such as peer-to-peer software on the machine.
Join the conversation
Comment replyThe posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.
Chamtech's spray-on antenna uses a nano material to provide a low-power boost to antenna range. The wireless-in-a-can product may some day bring an end to unsightly cell towers.
Whether Apple will release a new iPad next month doesn't seem to be the question as much as what day it will happen. A new rumor has it down to the day.
Tommy Jordan, the man who shot his daughter's laptop for YouTube, gets a visit from police and child protection services. Oh, and Good Morning America.
Along with green-lighting Google's buy of Motorola, the Justice Department today OKs an Apple-Microsoft-RIM partnership deal to buy Nortel patents, and Apple's plan to acquire Novell patents.
EnerG2 opens a plant to make an engineered carbon that will improve performance of energy storage devices and make storage for start-stop hybrid cars less expensive.
"Never Stop Playing" campaign for upcoming portable marks Sony's largest platform launch marketing spend, with ads to reach YouTube, Facebook, TV, and billboards in major cities.
As UC Berkeley students, the co-founders of "Back to the Roots" discovered they could grow mushrooms using recycled coffee grounds. Now their mushroom kit sells at grocery stores across the country.
Join the conversation