Critical new Firefox fix available

Mozilla issues update for Firefox & SeaMonkey

By Grant Gross | 07 March 07

The Mozilla Foundation has published a fix for a ‘critical’ JavaScript vulnerability in the Firefox browser and the SeaMonkey application suite.

Related Articles

The fix targets Firefox versions 2.0.0.2 and 1.5.0.10, as well as SeaMonkey versions 1.1.1 and 1.0.8. An earlier fix for a JavaScript problem allowed scripts from web content to execute arbitrary code, the Mozilla Foundation said in a security update.

The vulnerability allowed uniform resource identifiers, or URIs, in image tags to be executed even if JavaScript was disabled in the program preferences, Mozilla said. Disabling JavaScript does not protect against the flaw, so the foundation recommended that users upgrade the applications to new versions.

Mozilla's Thunderbird email client was not affected by the vulnerability, it said.

Share this article

Comments

Send to a friend

Email this article to a friend or colleague:

Recipient's name *

Recipient's email *

Your name *

Captcha *

PLEASE NOTE: Your name is used only to let the recipient know who sent the story. Both your name and the recipient's name and address will not be used for any other purpose.