Upgrade your Firefox
by Volker Weber
Running Firefox? Then do upgrade to 1.0.3. Now. Here is why.
Comments
What is pretty anoying: the "critical update available" icon in the top-right corner of the menue bar still points to 1.0.2 (18th of April, 18:30 UTC), at least for the german version . This version is error prone and highly vulnerable. Please do a manual update, using this version (German Firefox only):
Firefox 1.0.3 für Windows, Deutsch (4.7MB)
The exploit is pretty simple, even myself understands the source code ;-) Do not wait, until the script kidies understand the exploit too ....
That's exactly the reason why one should use english original versions if he can handle the language.
Sven,
I disagree, not everybody in the world is supposed to speak English even though it's the most commonly used language in the IT world.
Hajo,
same problem with the Italian version and, strangely enough, it's gone with 1.0.3. Is it supposed to show only for "emergencies" such as this one?
Volker,
thanks for pointing this problem out and linking to the Proof-of-concept site. I did the test and found indeed it wrote the boom.txt file on my root directory... a bit of a worry really.
This time we are safe but God knows what's waiting ahead.. ;-)
It´s good to have a tool such as Microsoft AntiSpyware, which alerted me when trying out the test that a .bat file was going to be executed, which I blocked then. No threath :-)
@Peterjan
Exactly, that's why I wrote if one "can" use the language. If not, bad luck but perhaps the reason starting with english exercises...can't be a mistake nowadays...
Thanks, Pieterjan. It was actually Hajo, who pointed out this problem and sent me the link. I was a bit busy the last two days and forgot to attribute this message to him.
Post a comment
Recent comments
Roland Dressler on Outlook to Notes converter: from PST to NSF at 11:50
Karl Heindel on Outlook to Notes converter: from PST to NSF at 10:30
Jerry Preissler on LibreOffice vs Apache OpenOffice at 13:47
Mariano Kamp on How to commit at 09:41
Bernd Vellguth on Outlook to Notes converter: from PST to NSF at 02:05
Thilo Hamberger on Outlook to Notes converter: from PST to NSF at 16:40
Jens Bruntt on Free PlayBook for your Android app submission at 11:47
Karl Heindel on Outlook to Notes converter: from PST to NSF at 20:26
Roland Dressler on Outlook to Notes converter: from PST to NSF at 15:12
Stephan H. Wissel on heise online: IBM plant Stellenabbau in Deutschland at 08:38
Jan Lauer on heise online: IBM plant Stellenabbau in Deutschland at 04:13
Juergen Heinrich on Balance at 03:29
Jörg Hermann on Girls On Longboards at 02:42
Stephan H. Wissel on heise online: IBM plant Stellenabbau in Deutschland at 23:21
Joerg Michael on heise online: IBM plant Stellenabbau in Deutschland at 21:01
Ben Poole on Outlook to Notes converter: from PST to NSF at 19:46
David Hablewitz on BlackBerry Business Cloud Services with Microsoft Office 365 at 16:44
Patrick Picard on RIM tries to be social. Falls flat on face. at 16:00
Volker Weber on Outlook to Notes converter: from PST to NSF at 10:29
Richard Hogan on Outlook to Notes converter: from PST to NSF at 10:26
Joachim Haydecker on Girls On Longboards at 08:26
Karl Heindel on Outlook to Notes converter: from PST to NSF at 07:50
Keith Brooks on Outlook to Notes converter: from PST to NSF at 04:21
David Hablewitz on Outlook to Notes converter: from PST to NSF at 01:38
Karl Heindel on Outlook to Notes converter: from PST to NSF at 22:44
Click here to subscribe
