firefox: Critical security update

Users of firefox please be advised of a Critical security update that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

RHSA-2010:0782-01: [RHSA-2010:0782-01] Critical: firefox security update
Product: Red Hat Enterprise Linux
Description:
Several flaws were found in the processing of malformed web content. A web

page containing malicious content could cause Firefox to crash or,

potentially, execute arbitrary code with the privileges of the user running

Firefox. (CVE-2010-3175, CVE-2010-3176, CVE-2010-3179, CVE-2010-3183,

CVE-2010-3180)
A flaw was found in the way the Gopher parser in Firefox converted text

into HTML. A malformed file name on a Gopher server could, when accessed by

a victim running Firefox, allow arbitrary JavaScript to be executed in the

context of the Gopher domain. (CVE-2010-3177)

Read more at http://www.criticalwatch.com

 

Advertisements