Showing results 1 to 20 of 73

Attack code posted for unpatched Firefox 3.5 flaw

Mozilla's security response team is scrambling to respond to the release of exploit code for a gaping hole in the latest version of its flagship Firefox browser.The flaw, rated "highly critical by Secunia, puts millions of Firefox users at risk of remote code execution attacks.

July 14, 2009 by

Exploit code sends Mozilla scrambling to fix Firefox

[ UPDATE:  Mozilla has shipped a patch for this vulnerability ]Mozilla's security response team is scrambling to ready a patch for what appears to be a serious security flaw affecting its flagship Firefox browser.The vulnerability, released alongside proof-of-concept code on several security sites, could lead to malicious code execution attacks if a Firefox user is lured to a Web site rigged with exploits.

March 25, 2009 by

News to know: Mozilla; Windows Server; LinuxWorld; Apple

Notable headlines:Ryan Naraine: Talking Firefox security with Mozilla's Window Snyder Mary Jo Foley: What's next for Windows ServerMicrosoft finalizes SQL Server 2008TechRepublic: 10 questions (and answers) about Microsoft Live MeshDancho Danchev: Today's assignment : Coding an undetectable malwareFake CNN news items malware campaign spreading rapidlyJoe McKendrick: Expert: SOA vulnerable to DNS security flaw, tooLarry Dignan: Mozilla taps crowd for concepts: Will the browser usurp the OS?

August 6, 2008 by

A look at the recent Firefox 3 vulnerability

True to form, Billy Rios promised a more in depth look at the MSFA2008-35 vulnerability which is another protocol handler flaw in Firefox 3.  As previously reported here, this was another protocol handler flaw that led to arbitrary remote command execution, and is especially dangerous since it can be deployed widely through the use of a cross-site scripting attack vector.

July 22, 2008 by

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.

Top Stories