The Mozilla patch addresses some eight security flaws in versions 2 and 3 of the browser. Among the fixes are several vulnerabilities which could be targeted in cross-site scripting attacks, as well as one which could be exploited to remotely execute code.
Ironically, the update also brings with it a drop in security protection for some Firefox users. The 2.0.0.19 update signifies the end of security support for the browser.
Additionally, Mozilla will be shutting down anti-phishing protections for the Firefox 2 due the Google ending support for the browser's phishing site blacklist.
Mozilla is advising any users who haven't already upgraded to the latest version of the browser to do so.
Meanwhile, Microsoft issued an out-of-cycle update for Internet Explorer 7. The patch was first announced yesterday in response to a series of attacks in the wild on an unpatched flaw.
The update addresses a vulnerability in the way IE7 handles certain text files. If exploited, an attacker could use the flaw to remotely execute code on a targeted system.
The release comes just eight days after Microsoft issued its monthly patch for separate flaws in IE, Office and Windows.
.png&h=140&w=231&c=1&s=0)
_(5).jpg&h=140&w=231&c=1&s=0)
.png&w=100&c=1&s=0)
Private AI vs Public AI: How your organisation can securely adopt AI without compromise and excessive cost
iTnews Benchmark Security Awards 2025
Digital Leadership Day Federal
Government Cyber Security Showcase Federal
Government Innovation Showcase Federal
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
