Home Articles SBS Show Vladfire About Links Contact Wiki RSS2 Feed

AJAXify your Wordpress

Learn how I ajaxified my wordpress blog with these few steps...

SBS Show!

Listen to the latest episode of the SBS Show, Dave Sobel talks about process management...

Vladville Newsletter!

Looking for a more focused, exclusive insight into the world of SMB tech & business? Sign up for my newsletter!

« Life of a developer | Office 12 Insider Reports »

Firefox Critical Vulnerability: Download 1.0.7
Posted: 9:45 am September 21st, 2005	Post a comment Uncategorized

The more things change, the more they say the same. If you’ve gone to Firefox because you were tired of patching and getting hacked through Internet Explorer.. well, start patching. The Mozilla Foundation released FireFox 1.0.7 today in response to a very critical exploit that allowed hackers to launch commands on your system if you use Firefox as your default browser.

Pretty nasty, I’ve patched so hurry up and do so as well. It’s somewhat interesting that people are saying “the honeymoon is over” because of more exploits to Firefox. First of all, claiming x is more secure than y is just asking to become a target. Criminals behind worms and viruses, the folks that write them for commercial gain, are writing things for software they think will give them the largest deployment base. For the longest time, that was Windows XP and IE6. Well, with the new kids on the block, why not take advantage of the 10% install base that may not be hooked into Windows Update? After all, they think they are safe (ignorant) so they present a great target.

I’m sticking with Firefox because of additional functionality and their response to critical exploits has been more rapid than Microsoft. Thats just the nature of the beast, its open and easilly distributable. But if you aren’t patching, you’re really not any better off than Windows 98.

Point being: you’re not really safe, the best you can do is take care of your systems and patch the software you cannot proactively secure.

Both comments and pings are currently closed.

1 Comment

Vlad | September 21st, 2005 at 10:44 am

Something I forgot to mention: The security threat affects only Linux OS not Windows or Mac or whatnot, but there are other issues with it at all:

# Fix for a potential buffer overflow vulnerability when loading a hostname with all soft-hyphens
# Fix to prevent URLs passed from external programs from being parsed by the shell (Linux only)
# Fix to prevent a crash when loading a Proxy Auto-Config (PAC) script that uses an “eval” statement
# Fix to restore InstallTrigger.getVersion() for Extension authors

Whats on Vlad's Mind?

Get The Newsletter

Twitter

Happy mothers day to all my mommy twitter pals! Thanks! 3 days ago
@RandySpangler what's interesting is that all the industry bailouts are being paid back well.. But financial just keeps sinking 3 days ago
I can't believe that my little guy is already 4 years old and tall enough to ride the Splash Mountain.. Time http://t.co/w0OVv9Oj 3 days ago
More updates...

Vladfire Vlog

Episode 27
Henry Craven

Runtime: 9:03
Windows Media (45 Mb)
Quicktime (47 Mb)

SBS Show Podcast

SBS Show is a free weekly podcast (Internet for recorded radio show) focusing on small business and technology. More at sbsshow.com but check out our latest episode:

SBS Show #26
Erick Simpson
Managed Services Part 2

Divider

Listen to older shows..

Categories		Archives		About
Apple, Awesome, Beta, Blogroll, Boss, Cloud, Deals, E12, Events, Exchange, ExchangeDefender, Friends, Gadgets, Gators, Gaypile, Google, GTD, Humor, iPhone, IT Business, IT Culture, Legal, Linux, Microsoft, Misc, Mobility, Open Source, OS, OwnWebNow, Pimpin, Podcast, Programming, Rant, SBS Show, Security, Shockey Monkey, SMB, System Admin, Thieving Weasel, Uncategorized, Vista, Vladcast, Vladfire, Vladville, Web 2.0, Windows Home Server, WordPress, Work Ethic, Wrong		May 2012, April 2012, March 2012, February 2012, January 2012, December 2011, November 2011, October 2011, September 2011, August 2011, July 2011, June 2011, May 2011, April 2011, March 2011, February 2011, January 2011, December 2010, November 2010, October 2010, September 2010, August 2010, July 2010, June 2010, May 2010, April 2010, March 2010, February 2010, January 2010, December 2009, November 2009, October 2009, September 2009, August 2009, July 2009, June 2009, May 2009, April 2009, March 2009, February 2009, January 2009, December 2008, November 2008, October 2008, September 2008, August 2008, July 2008, June 2008, May 2008, April 2008, March 2008, February 2008, January 2008, December 2007, November 2007, October 2007, September 2007, August 2007, July 2007, June 2007, May 2007, April 2007, March 2007, February 2007, January 2007, December 2006, November 2006, October 2006, September 2006, August 2006, July 2006, June 2006, May 2006, April 2006, March 2006, February 2006, January 2006, December 2005, November 2005, October 2005, September 2005, August 2005, July 2005,		Vlad says: Thanks for checking out my blog. You've officially reached the end of the Internet so take in what you've read and don't look at it as gospel but an invitation to start thinking for yourself.