Slashdot Mirror

← Back to Stories (view on slashdot.org)

Critical Mozilla, Thunderbird Vulnerabilities

Posted by timothy on Wednesday September 15, 2004 @06:34AM from the you-do-have-a-recent-one-right dept.

d3ik writes "An advisory has been issued on several buffer overflow exploits in the Mozilla and Thunderbird code. Coincidentally, one of the exploits takes advantage of a unchecked buffer in the bitmap parser, very similar to recent Microsoft JPEG vulnerability. The good news is that if you have an updated version (Mozilla 1.7.3, Firefox 1.0PR, Thunderbird 0.8) you won't be affected."

4 of 596 comments (clear)

Min score:

Reason:

Sort:

damn it by 0x12d3 · 2004-09-15 06:40 · Score: 0, Redundant

...here come the holy wars :)
Re:Update notification methods by dtfinch · 2004-09-15 06:54 · Score: 0, Redundant

Tools: Options: Advanced: Software Update
Re:affect != effect by DLWormwood · 2004-09-15 07:07 · Score: 0, Redundant

If I had mod points, I'd make you a very rich man...
No kidding, poster like the Grammar Godwins are why I recently changed my .sig.

--
Those who complain about affect & effect on /. should be disemvoweled
Re:So will it be Mozilla's fault... by baggins2002 · 2004-09-15 07:24 · Score: 0, Redundant

If you don't go get your gas tank valved fixed in an official manufacturer recall from your car company, and your car blows up, whose fault is it?
Microsofts