Mozilla Firefox 2.0.0.14 released

Mozilla Firefox 2.0.0.14 has been released.

This update fixes 1 critical vulnerability.

For more info about fixed vulnerability, see here

See release notes and download Firefox 2.0.0.14 here

Mozilla Firefox 2.0.0.13 released

Mozilla Firefox 2.0.0.13 has been released.

This update fixes 2 critical, 2 high and 1 moderate vulnerabilities.

For more info about fixed vulnerabilities, see here

See release notes and download Firefox 2.0.0.13 here

Mozilla Firefox 2.0.0.12 released

Mozilla Firefox 2.0.0.12 has been released yesterday.

It fixes these vulnerabilities

See release notes and download Firefox 2.0.0.12 here

0-day vulnerability in Firefox

Larry Dignan wrote in his blog about Firefox vulnerability that allows to collect session information, including session cookies and session history. Firefox is not vulnerable by default but via addons.

This means that Firefox can leak information which allows attacker to load any javascript file on a machine.

List of add-ons
is quite long so most of Firefox users might have one or more of those.

Mozilla security chief Window Snyder said that this will be corrected in 2.0.0.12
version which should be released soon.

Other links related to issue:

Link 1
Link 2

Firefox 2.0.11 released

Firefox 2.0.11 was released on Friday.

This version fixes bugs which were encountered on 2.0.10 version.

More information from links below.

Link 1
Link 2

You can use Auto Update for updating or visit here

Firefox 2.0.0.10 released

Firefox 2.0.0.10 fixes three vulnerabilities

One of them fixes cross site scripting -vulnerability which is related to jar prorocol.

Second one fixes 3 memory corruption bugs which affect browser stability and which can be used in certain situations to execute malicious code.

Third one fixes referer-spoofing via window.location race condition. This means that browser can announce wrong referer to used site. This can be used to pass security mechanisms of web services which wait for right referer.

Download Firefox

Firefox 2.0.0.9 released

Firefox 2.0.0.9 was released yesterday.

This release corrects problems
that were found in Firefox 2.0.0.8.

Download Firefox

Firefox 2.0.0.8 released

In new Firefox version there have been fixed 8 vulnerabilities, two of them classified as critical, four of them as moderate and other two as low.

One of the moderate vulnerabilities is related to URIs with invalid %-encoding mishandled by Windows. This has already been fixed in 2.0.0.6 version. However, that patch didn't prevent the incorrect file-handling programs from launching which cause some risk.

2.0.0.8 has also support for Mac OS X 10.5 (Leopard) with some known issues affecting some media plugins.

Download latest version of Firefox

Opera fixed 3 vulnerabilities

Opera fixed in latest version (9.24) three vulnerabilities, two of them being critical.

First of them is about that external news readers and e-mail clients can be used to execute arbitrary code.

Second one is related to how Opera handles forms. If a web site is formulated in certain way it can execute html- and javascript code in another website's context.

Third is for Apple Mac OS X only. It applies if there is Opera installed with Adobe Flash Player 9.0.47.0 and earlier. No details were published.

More info about vulnerabilities:

Link 1
Link 2
Link 3