Tumblr 101: Tips And Tricks To Get Started
Sebastian Thrun: Google's Driverless Car
Yet Another Security Flaw Hits Firefox 3.5 Web Browser
Here at Switched, we're big fans of Firefox, the once alternative Web browser from Mozilla that, within a few years, has become hugely popular, with nearly one in four Web surfers using it today. We quickly downloaded the 3.5 release when it was made available a few weeks ago -- alas, a raft of security warnings are making us wonder whether that was necessarily the best idea.Not long after the eagerly-anticipated 3.5 release, a major security vulnerability was found -- a flaw that could have allowed shady Internet sites to infiltrate your computer and, possibly, install spyware. That flaw was patched last week, but now, just a few days later, another security hole has been found. It's called the "Unicode Data Remote Stack Buffer Overflow Vulnerability," and, as of now there's no fix from Mozilla.
Should you be worried? Probably not, as it's unlikely that more than a handful of sites are using this exploit, and they're surely relegated to the darkest corners of the Web. This is really just more of a black eye for the browser, which was pledged as a more secure alternative to Microsoft's Internet Explorer. Still, you should always be careful and be wary before you go to random sites you've never heard of -- and, when Firefox prompts you about an important security update in a day or two, you'd best install it. [From: SecurityFocus, via DownloadSquad]
16 Grammys Looks That Weren't Working
Whitney Houston Autopsy: Cause of Death Determined?
Worst Movie Mistakes: Date Night Edition (PHOTOS)
Whitney Houston, Bobbi Kristina: Late Singer's Daughter Hospitalized
Adele Five-Year Break? Singer Plans to Focus on Relationship, Write 'Happy Record'
PHOTOS: President Obama's Kissing Technique
Jennifer Hudson Whitney Tribute: Grammy President Reveals Why Singer Was Chosen for Musical Memorial
Grammy 2012 Winners' List: Adele Sweeps Music's Biggest Night
How Hattie Lost 300 Pounds: 'I Was Ready To Do Whatever It Took To Survive'
3 Economic Misconceptions That Need to Die
5-Hour Energy: A Success Equal Parts Caffeine, Chemistry and Meditation
Matt Bomer Comes Out As Gay
People With Easy-To-Pronounce Names More Likely To Succeed, Study Says
Katy Perry Grammy Performance 2012: Did the Diva Diss Her Ex-Hubby With Revealing New Song?
Grammy Awards 2012: The Best & Worst Of The Red Carpet!
Whitney Houston Dead: Stars React to Legend's Sudden Death
Photos Of Dead Lacrosse Player's Injured Body Shown To Jury
12 Grammys Stars Who Gave Good Style
The Top 10 Slacker Colleges
15 Funny Valentine's Day Cards
Mystery Disease Kills Thousands
WATCH: 25 Million Tons Of Japan Tsunami Debris Headed Directly Our Way
Oprah Under Fire For Controversial Tweet
PHOTOS: Thank God For Grown-Up Glamour
JUNGLE SURVIVAL: Marines Drink Snake Blood, Eat Insects
Remembering The People's Ballerina
New Clues, Details Emerge In Powell Case
PHOTOS: Model Falls At Dennis Basso Show
PHOTOS: Kate Spends Valentine's Day Solo!
Taylor Swift Does Great Depression Chic
PHOTOS: Beautiful Scars
15 Funny Valentine's Day Quotes
Comments
2
Subscribe to commentsHeimbachaeJul 20th 2009 10:45AM
i'm stickin to safari
asadotzlerJul 20th 2009 12:12PM
"That flaw was patched last week, but now, just a few days later, another security hole has been found. It's called the "Unicode Data Remote Stack Buffer Overflow Vulnerability," and, as of now there's no fix from Mozilla."
This is absolutely wrong. It is neither a stack buffer overflow nor an exploitable crash.
" Should you be worried? Probably not, as it's unlikely that more than a handful of sites are using this exploit, and they're surely relegated to the darkest corners of the Web."
There is no exploit. The crash is not exploitable. Please read Mozilla's official announcement explaining this:
http://blog.mozilla.com/security/2009/07/19/milw0rm-9158-stack-overflow-crash-not-exploitable-cve-2009-2479/