Firefox 3.5.8 Closes Security Holes

By Erik Larkin, PCWorld Feb 18, 2010 10:45 AM

Mozilla yesterday released updates for its Firefox Web browser to shore up vulnerabilities in the 3.5.x and 3.0.x browser versions.

Three critical flaws (MSFA 2010-01, 2010-02 and 2010-03) all involve memory-related errors that could potentially allow an attacker to run any command on a victim PC. According to the advisories, the holes are already fixed in the recently released Firefox 3.6.

The patches also fix two other flaws that could lead to cross-site scripting attacks, but are only rated moderate (MSFA 2010-04 and 2010-05).

The updates are available for Windows, Mac and Linux, and will bump up the browser versions to 3.5.8 or 3.0.18. If you haven't already seen the automatic update pop-up, head to Help | Check for Updates to get the patch.

Would you recommend this story? YES NO

Comments

Subscribe to the Security & Privacy Newsletter - weekly

See All Newsletters »

Similar Articles:

Security Alert

Absinthe 2.0 Jailbreak Is What's Wrong with iOS Developers have released Absinthe 2.0 which can jailbreak iOS 5.1.1 devices. Jailbreaking is a personal choice, but a jailbroken iOS device poses a security risk.
Microsoft Fixes Critical Flaws with Patch Tuesday Updates Microsoft released seven security bulletins for Patch Tuesday, but two in particular should get priority attention according to security experts.
'Smishing' Attacks Are on the Rise What do you get when you combine SMS text messaging with a phishing attack? Smishing. Beware--smishing attacks and text message spam are on the rise.

Best Prices on Antivirus Software

Norton Antivirus 2012 (Full Product, 3 PCs) $21.00 and up See All Prices
Endpoint Protection v.12.0 Small Business Edition (Full Product, 10 Users) $119.58 and up See All Prices
Total Protection 2012 (Full Product, 3 Users) $21.99 and up See All Prices
Antivirus with Spy Sweeper $16.00 and up See All Prices

See all Best Prices on Antivirus Software »

See also: Best Prices on Security Software, Firewalls

All PCWorld Blogs

SpokenLayer Aims to Give the Web the Power of Speech Rather than tagging something to read later, you may be able to listen to it later with the help of a conversion tool from this startup.
NES Mod Lets You Play Classic Games On Your Smartphone This mod allows you to connect your NES console and phone together using Bluetooth and Arduino. Let the games begin!
Motorola Videos Show Android 4.0 on Droid RAZR New features in Motorola's custom version of Ice Cream Sandwich are displayed.
Microsoft Delivers a Blow to Open Source with Visual Studio 11 Focusing exclusively on Metro, the free, Express version of this software will no longer offer support for desktop-style applications.

Subscribe to the Security & Privacy Newsletter - weekly

See All Newsletters »

12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.

Today's Special Offers

Editors' Picks

Name	City

Address 1	State	Zip

Address 2	E-mail (optional)