Exploit code chases two Firefox flaws (May 9, 2005)

ZDnet ^ | May 9, 2005 | Dawn Kawamotot

[CometBaby]

If you use the Firefox browser .. read this !! .. Two vulnerabilities in the popular Firefox browser have been rated "extremely critical" because exploit code is now available to take advantage of them. The cross-site scripting and remote system access flaws were discovered in Firefox version 1.0.3, but other versions may also be affected, said security company Secunia, which issued the ratings Sunday.

[demlosers]

I'm using Firefox 1.5

[clee1]

Who is still using 1.0.3????

[Darkwolf377]

Oh, great, I just started using Firefox.

I dumped AOL (and in response, my bank and I are battling it out, because AOL kept charging my closed bank account, and the bank kept paying!!!!!), and the other browser I tried kept refusing to open certain pages. I have no idea what's the best browser, but this one seems to work ok.

[Sols]

Someone still living in May 2005, apparently.

[New Perspective]

Who is still using 1.0.3????

LOL, ya, that is like finding someone still driving a Pinto.

[dr_who_2]

...which appears to be rather unstable, although the crappy plugins I'm using could be to blame perhaps. Seems like no nifty new feature comes without 5 major regressions in the program.

[Mount Athos]

This is absolutely ancient and fixed long ago

[softwarecreator]

I warned all the anti-Microsoft people a long time ago not to gloat too much over Internet Explorer's flaws because the same will happen to FireFox.

The more people use it, the more vulnerabilities will be revealed.  Pure common sense.

[demlosers]

Because it's still in Beta release.

[Sols]

Anything wrong with the way Firefox displays a website is the problem of the person who built that site. Not Firefox.

[Bloody Sam Roberts]

Who is still using 1.0.3????

Someone who doesn't want to ever download and use any other extensions than the ones they have already installed?

[My2Cents]

1.0.7

[Sols]

No it's not.

[Bloody Sam Roberts]

...which appears to be rather unstable

I was reluctant to upgrade. But I did. It's been just as stable for me as 1.0.7. No problems at all yet.

[demlosers]

Not very long ago:

Mozilla Firefox 1.5 Released

Tuesday November 29th, 2005

The final release of Mozilla Firefox 1.5 is now available for download from GetFirefox.com for most major operating systems or from the mirrors. Users of the release candidates should receive the update soon.

http://www.mozillazine.org/talkback.html?article=7736

[CometBaby]

I'm running Firefox 1.5 as well .. you have to go in and clean our your History cache and set it to store for zero days. What I am hearing, is that it is presently affecting all versions .. even this newest one. They are working hard on a patch.

Here is the official statement from Firefox: http://www.mozilla.org/security/history-title.html

Also, a warning has now come out for Opera .. apparently the same problem. Here is the story on Opera: http://secunia.com/advisories/17963/

[Sols]

So what you're saying is, 1.5 is not in beta. Which is what I said. ;)

[CometBaby]

This is absolutely ancient and fixed long ago

If you think this is ancient, read the official statement from Firefox

http://www.mozilla.org/security/history-title.html

[demlosers]

Well, it was the last time I looked before a few minutes ago...time flies