DarkFiber Consulting - IT Managed Services » Thunderbird

Mozilla Releases Firefox 3.6.4

DarkFiber Consulting — Wed, 23 Jun 2010 12:32:00 +0000

The Mozilla Foundation has released Firefox 3.6.4 and Firefox 3.5.10 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, or conduct cross-site scripting attacks. Some of these vulnerabilities also affect Thunderbird and SeaMonkey.

DarkFiber Consulting encourages users and administrators to review the security advisories for Firefox 3.6 and Firefox 3.5 and apply any necessary updates to help mitigate the risks.

Tags: Arbitrary Code, Attacker, Cross Site Scripting, Denial Of Service, Firefox, Mozilla Releases, Necessary Updates, Seamonkey, Security Advisories, Thunderbird

Mozilla Releases Security Advisories

DarkFiber Consulting — Mon, 01 Mar 2010 21:14:03 +0000

The Mozilla Foundation has released multiple security advisories to address vulnerabilities in Mozilla Firefox, Thunderbird, and SeaMonkey. Exploitation of these vulnerabilities may allow a remote, unauthenticated attacker to execute arbitrary code or bypass security restrictions.

DarkFiber Consulting encourages users and administrators to review the Mozilla Foundation security advisories. Firefox users may upgrade to version 3.0.18, 3.5.8, or 3.6 to help mitigate the risks. Thunderbird users should upgrade to version 3.0.2, and SeaMonkey users should upgrade to version 2.0.3 once those updates are released by the vendor.

Tags: Address, Arbitrary Code, Attacker, Mozilla Firefox, Mozilla Foundation Security Advisories, Seamonkey, Security Consulting, Security Restrictions, Thunderbird

Mozilla Foundation Releases Firefox 3.0.11

DarkFiber Consulting — Thu, 02 Jul 2009 21:50:53 +0000

Mozilla Foundation has released Firefox 3.0.11 to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, mislead users, or obtain sensitive information. The Mozilla Foundation Security Advisories also indicate that many of these vulnerabilities also affect Thunderbird and SeaMonkey; however, updated versions of those packages are not currently available.

DarkFiber Consulting encourages users to review the Mozilla Foundation Security Advisories released on June 11, 2009 and apply any necessary updates or workarounds to help mitigate the risks.

Tags: Address, Arbitrary Code, Attacker, Information Security, Mozilla Foundation Security Advisories, Necessary Updates, Thunderbird, Workarounds

Mozilla Foundation Releases Firefox 3.0.9

DarkFiber Consulting — Sun, 10 May 2009 06:23:28 +0000

Mozilla Foundation has released Firefox 3.0.9 to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, leverage additional attacks, or obtain sensitive information. The Mozilla Foundation security advisories indicate that many of these vulnerabilities also affect SeaMonkey and Thunderbird.

DarkFiber Consulting encourages users and administrators to review the Mozilla Foundation Security Advisories website for more information about the vulnerabilities and upgrade to Firefox 3.0.9 to help mitigate the risks.

Tags: Address, Arbitrary Code, Attacker, Information Security, Leverage, Mozilla Foundation Security Advisories, Seamonkey, Thunderbird

Mozilla has released Firefox 3.0.5

DarkFiber Consulting — Thu, 18 Dec 2008 05:00:35 +0000

Mozilla has released Firefox 3.0.5 to address multiple vulnerabilities. The impacts of these vulnerabilities include cross-site scripting and information disclosure. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities may also affect Thunderbird.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Review the Mozilla Foundation Security Advisory.
Update to Firefox 3.0.5.

Tags: Address, Cross Site Scripting, Information Disclosure, Mozilla Foundation Security Advisories, Mozilla Foundation Security Advisory, Thunderbird

Mozilla Releases Updates to Address Vulnerabilities in Multiple Products

DarkFiber Consulting — Fri, 14 Nov 2008 05:00:29 +0000

Mozilla has released Firefox 2.0.0.18, Firefox 3.0.4, and SeaMonkey 1.1.13 to address multiple vulnerabilities. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, security bypass, cross-site scripting, denial of service, and information disclosure. As described in the Mozilla Foundation security advisories, some of these vulnerabilities may also affect Thunderbird.

DarkFiber Consulting encourages users to review the Mozilla Foundation security advisories and apply any necessary updates to help mitigate the risks.

Tags: Address, Arbitrary Code Execution, Cross Site Scripting, Denial Of Service, Escalation, Information Disclosure, Mozilla Foundation Security Advisories, Multiple Products, Necessary Updates, Privilege, Seamonkey, Thunderbird, Vulnerabilities

Mozilla Releases Firefox 3.0.2

DarkFiber Consulting — Thu, 25 Sep 2008 04:13:35 +0000

Mozilla has released Firefox 3.0.2 to address multiple vulnerabilities. The impacts of these vulnerabilities include arbitrary code execution, enabling cross-site scripting, privilege escalation, information disclosure, and denial of service. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities may also affect Thunderbird and SeaMonkey.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Review the Mozilla Foundation Security Advisories.
Update to Firefox 3.0.2.

Tags: Address, Arbitrary Code Execution, Denial Of Service, Escalation, Information Disclosure, Mozilla Foundation Security Advisories, Mozilla Releases, Privilege, Seamonkey, Thunderbird

Mozilla Releases Firefox 3.0.1

DarkFiber Consulting — Fri, 18 Jul 2008 19:52:47 +0000

Mozilla has released Firefox 3.0.1 to address three vulnerabilities. Exploitation of these vulnerabilities may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. One of these vulnerabilities may also affect Thunderbird and SeaMonkey. Two of these vulnerabilities were previously fixed in Firefox 2.0.0.16 as well; please see the DarkFiber Consulting Current Activity entry Mozilla Releases Firefox 2.0.0.16 for additional information.

DarkFiber Consulting encourages users to review the following Mozilla Foundation Security Advisories and upgrade to Firefox 3.0.1 or implement the workarounds provided in the documents to help mitigate the risks:

MFSA 2008-34 : Remote code execution by overflowing CSS reference counter
MFSA 2008-35 : Command-line URLs launch multiple tabs when Firefox not running
MFSA 2008-36 : Crash with malformed GIF file on Mac OS X

Tags: Address, Arbitrary Code, Attacker, Code Execution, Crash, Css Reference, Current, Denial Of Service, Gif File, Mac Os X, Mozilla Foundation Security Advisories, Mozilla Releases, Os X, Running, Seamonkey, Tabs, Thunderbird, Vulnerabilities, Workarounds

Mozilla Releases Firefox 2.0.0.16

DarkFiber Consulting — Fri, 18 Jul 2008 19:52:41 +0000

Mozilla has released Firefox 2.0.0.16 to address two vulnerabilities. Exploitation of these vulnerabilities may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. One of these vulnerabilities may also affect Thunderbird and SeaMonkey.

DarkFiber Consulting encourages users to review the following Mozilla Foundation Security Advisories and upgrade to a fixed version or implement the workarounds listed in the documents to help mitigate the risks.

MFSA 2008-34 : Remote code execution by overflowing CSS reference counter
MFSA 2008-35 : Command-line URLs launch multiple tabs when Firefox not running

Tags: Address, Arbitrary Code, Attacker, Code Execution, Css Reference, Denial Of Service, Mozilla Foundation Security Advisories, Mozilla Releases, Running, Seamonkey, Tabs, Thunderbird, Vulnerabilities, Workarounds