IE7, Firefox get security fixes

By

The two most popular browsers on the market each received security updates on Wednesday.

IE7, Firefox get security fixes
Both Mozilla and Microsoft posted patches to address flaws in the latest versions of Internet Explorer 7 and Firefox.

The Mozilla patch addresses some eight security flaws in versions 2 and 3 of the browser. Among the fixes are several vulnerabilities which could be targeted in cross-site scripting attacks, as well as one which could be exploited to remotely execute code.

Ironically, the update also brings with it a drop in security protection for some Firefox users. The 2.0.0.19 update signifies the end of security support for the browser.

Additionally, Mozilla will be shutting down anti-phishing protections for the Firefox 2 due the Google ending support for the browser's phishing site blacklist.

Mozilla is advising any users who haven't already upgraded to the latest version of the browser to do so.

Meanwhile, Microsoft issued an out-of-cycle update for Internet Explorer 7. The patch was first announced yesterday in response to a series of attacks in the wild on an unpatched flaw.

The update addresses a vulnerability in the way IE7 handles certain text files. If exploited, an attacker could use the flaw to remotely execute code on a targeted system.

The release comes just eight days after Microsoft issued its monthly patch for separate flaws in IE, Office and Windows.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
browserfirefoxflawsmicrosoftmozillasecurity

Sponsored Whitepapers

Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Futureproof Your Business with Datacom and AMD: Seamless Windows 11 Transition
Futureproof Your Business with Datacom and AMD: Seamless Windows 11 Transition
See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra

Events

Most Read Articles

Australia's super funds told to assess authentication controls

Australia's super funds told to assess authentication controls
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
CBA looks to GenAI to assist 1200 'security champions'

CBA looks to GenAI to assist 1200 'security champions'
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?