AfterDawn: Tech news

Mozilla patches 12 Firefox bugs

Written by Andre Yoskowitz (Google+) @ 21 Oct 2010 0:10 User comments (3)

Mozilla patches 12 Firefox bugs Mozilla has patched 12 vulnerabilities in the popular Firefox browser today, including an updated patch for the highly publicized "binary planting" issue that was initially patched last year.
8 of the vulnerabilities were rated "critical," meaning the bugs could be used to hijack a system. After the critical ones there were two "high," one "moderate" and finally a single "low."

PCAdvisor explains that the 'binary planting' vulnerability has also been called 'DLL load hijacking'.

Says the site: "Regardless of the term, the flaw existed in Windows applications that do not call DLLs (dynamic linked libraries) or executable files using a full path name. Instead, they rely on the filename alone. The latter can be exploited by attackers, who can trick the program into loading a malicious file with the same title as a required DLL or executable. If attackers can con users into visiting malicious websites or remote shared folders, or get them to plug in a USB drive, they can compromise a computer and infect it with malware."

Mozilla also recommends updating to the latest version of the browser if you have not already.

Previous Next  

3 user comments

122.10.2010 15:06

This is a problem with open source that becomes popular, it's too easy to exploit!

223.10.2010 9:04

Originally posted by Mr-Movies:
This is a problem with open source that becomes popular, it's too easy to exploit!
True

Forza Juve!!

325.10.2010 3:42

Originally posted by juventini:
Originally posted by Mr-Movies:
This is a problem with open source that becomes popular, it's too easy to exploit!
True
Double True!
This message has been edited since its posting. Latest edit was made on 25 Oct 2010 @ 3:44

Someone told me once that theres a right and wrong, and that punishment would come to those
who dare to cross the line.
But it must not be true for jerk-offs like you.
Maybe it takes longer to catch a total asshole.

Comments have been disabled for this article.

News archive