Firefox Patch; Two Authentication Vulnerabilities

My name is Justin and you can check out my Programming Blog at: CodeJustin.com - Justin has posted 65 posts at DZone. View Full User Profile

Firefox Patch; Two Authentication Vulnerabilities

08.04.2009
| 1364 views |
  • submit to reddit

We Recommend These Resources

NOSQL for the Enterprise

Mozilla on Monday released two new versions of Firefox, 3.5.2 and 3.0.13 in order to patch two critical security issues.  The first vulnerability could let an attacker run arbitrary code on a person's computer by sending specially crafted authentication information called certificate and the second vulnerability involves a flaw in certificate authentication technology that could potentially let an attacker gain access to encrypted information or issue a bogus update to Firefox.

The only advice Mozilla gave to users was "We strongly recommend that all Firefox users upgrade to this latest release".  It should also be noted that Mozilla has patched the vulnerabilities.

0
Published at DZone with permission of its author, Justin Sargent.

(Note: Opinions expressed in this article and its replies are the opinions of their respective authors and not those of DZone, Inc.)

"Starting from scratch" is seductive but disease ridden
-Pithy Advice for Programmers