Welcome to PChuck's Network News.

Wednesday, May 03, 2006

Firefox V1.5.0.3

Firefox V1.5.0.3 is out - it fixes a possible denial of service vulnerability, and is marked Critical.

If you haven't disabled Automatic Updates in your Firefox installation, it may soon upgrade automatically. My advice? Download and upgrade on your own, when it's convenient. Better than having your bandwidth ties up unexpectedly, or having the computer reboot on you when it's not convenient.

Update 2006/05/11: ISC / SANS reports a Proof Of Concept exploit, published by SecurityView, against a vulnerability in V1.5.0.3 and prior versions. Consider using the workaround described in the SANS article.

No comments: