To read about it go HERE.
You mean the Firefox3 " no big deal" since exactly the same problem exists and would have existed in Firefox2 whether Firefox 3 was released or not?
Quoted from Link :
"Tipping Point ranked the severity of the vulnerability as high, but said that users would have to click on a link in an e-mail or visit a malicious Web page before being affected. The issue affects users of Firefox 3.0 as well as Firefox 2.0."Maybe I'm missing something but any user doing those actions with any Browser could get infected ??? How would I open a link in a Email with Firefox ?
"...Tipping Point found out about the vulnerability through its Zero Day Initiative, which lets researchers earn cash by submitting new vulnerabilities to the company."Easy money ! :) Sounds like the usual post release hype most software gets .
Maybe I'm missing something but any user doing those actions with any Browser could get infected Huh How would I open a link in a Email with Firefox ?
You can lead a horse to water, but you can’t make him drink. A browser that was not susceptible to the vulnerability would not get infected, even if it did arrive at the malicious site.
Your email application will launch your default browser if you click on a link in an email.
When I we can download patch or new version ??
When it is ready ;D
However a healthy dose of common sense will protect you as well as any patch (when it is available).
Never click links or open attachments in unsolicited emails, even if they supposedly come from a friend, the from email address is easy to forge, check, check and check again.
Would it be best to wait for a few weeks before downloading FF3, til the problems get fixed?
Thanks
Well it affects Firefox 2.0 as well as 3.0 so it does not matter, as long as you use firefox you are vulnerable to this. So Go ahead and install Firefox 3.0 if you like.
Seems Firefox is getting the same treatment as the Mac now. Someone finds One Vulnerability and the media jumps all over it. Guess They got tired of reporting on IE vulnerabilities :
Seems Firefox is getting the same treatment as the Mac now. Someone finds One Vulnerability and the media jumps all over it. Guess They got tired of reporting on IE vulnerabilities Roll EyesAlong with popularity comes infection..... Now you know what's been happening to IE for a long time. It wasn't sloppiness in coding only on the part of Microsoft but, at the time, they where an easy scapegoat. :'(
Glib. And Horsesflop as well. :
Hi FwF,
Here a hint at what all the fuss is about: http://archives.neohapsis.com/archives/fulldisclosure/2008-06/0223.html
Release overflow - probably content manager, boundary condition error. Full disclosure, we believe in it,
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2786
pol