Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Mozilla Patches Firefox, Thunderbird

Mozilla Corp. Thursday updated its Firefox browser to fix 7 flaws, including 4 pegged by the open-source developer as "Critical."

Of the four critical vulnerabilities patched in Firefox 1.5.0.7, none are currently being exploited, Mozilla said in detailed descriptions of each fixed flaw. In fact, Mozilla said in several of the descriptions that it was not sure whether the specific vulnerabilities could be exploited, but had issued patches just in case.

"We presume that at least some of these could be exploited to run arbitrary code with enough effort," Mozilla stated in one patch's explanation.

That jibes with recent comments made by the company's new security chief, Window Snyder, who pointed out in a Tuesday interview that Mozilla's developers fix bugs even if they can't prove they are exploitable.

Two of the remaining 3 patches were labeled as "Moderate," while the third was tagged as "Important" by Mozilla. Danish vulnerability tracker Secunia, on the other hand, gave the update a collective "Highly critical" rating, its second-most-dire ranking.

  • 1