Firefox 3.0.5 Released, Mitigates Multiple Vulnerablities
News, late yesterday, of the release of Mozilla Foundations’ Firefox Open Source web browser. This release mitigates multiple cross-site scripting vulnerabilities, as well as JavaScript vulnerabilities, CSS challenges and Cross Domain Data Theft. The vulnerability list of fixed issues appears after the jump. Must be the week of browser patching (updates for Opera, Internet Explorer, and Firefox, even Camino, perhaps being driven by the on-line shopping season…mxh) Happy Patching!
Mozilla Foundation’s Firefox (all languages & operating systems) MFSA 2008-60 Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19) MFSA 2008-63 User tracking via XUL persist attribute MFSA 2008-64 XMLHttpRequest 302 response disclosure MFSA 2008-65 Cross-domain data theft via script redirect error message MFSA 2008-66 Errors parsing URLs with leading whitespace and control characters MFSA 2008-67 Escaped null characters ignored by CSS parser MFSA 2008-68 XSS and JavaScript privilege escalation MFSA 2008-69 XSS vulnerabilities in SessionStore- Opera 9.63 Update Released
- Google releases its Chrome browser
- American Express web bug exposes card holders
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_b.png?x-id=0c3a1bf3-7e7d-44eb-9948-e6ec276ddcdc)
