|
Firefox 1.5.0.4 Released
|
Posted by Donster on: 2006-06-02 15:16:14 663
|
Stability improvements and security fixes
By Brandon Hill @ DailyTech
The Mozilla Foundation has released another update to its popular Firefox web browser. Firefox 1.5.0.4 brings some improvements in stability and a slew of security updates to the table. Here's a list of the changes made with this release:
- Privilege escalation using addSelectionListener
- Web site XSS using BOM on UTF-8 pages
- File stealing by changing input type (variant)
- "View Image" local resource linking (Windows)
- Buffer overflow in crypto.signText()
- Remote compromise via content-defined setter on object prototypes
- PLUGINSPAGE privileged JavaScript execution 2
- Privilege escalation through XUL persist
- XSS viewing javascript: frames or images from context menu
- HTTP response smuggling
- Fixes for crashes with potential memory corruption
- EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
|
|
News Source: Email
|
|
