 |
Windows 7: Firefox hit by multiple drive-by download flaws
|
28 Oct 2009
|
| |
Windows 7 Ultimate x64, XP Mode, W8 RP VM, Linux Mint Debian 2nd OS HD- 7 Pro x64 second case 7,902 posts New England |
Firefox hit by multiple drive-by download flaws
Just in at ZDNet: Quote: October 28th, 2009 Firefox hit by multiple drive-by download flaws
Posted by Ryan Naraine @ 7:34 am
Mozilla’s flagship Firefox browser is vulnerable to at least 11 “critical” vulnerabilities that expose users to drive-by download attacks that require no user interaction beyond normal browsing.
The open-source group shipped Firefox 3.5.4 with patches for the vulnerabilities, which range from code execution risk to the theft of information in the browser’s form history.
. 
One of the critical issues affect media libraries introduced in Firefox 3.5 when audio and video capabilities were added.
Here’s the skinny on the high-risk issues in this Mozilla Firefox patch batch: More at: Firefox hit by multiple drive-by download flaws | Zero Day | ZDNet.com | My System Specs |
| OS Windows 7 Ultimate x64, XP Mode, W8 RP VM, Linux Mint Debian 2nd OS HD- 7 Pro x64 second case
CPU AMD Phenom II X4 975 Deneb 3.6ghz - 965 on new mini tower
Motherboard Gigabyte GA-790XTA-UD4
Memory Kingston Hyper X DDR3 1600 1.5v 16gb - Mushkin on 2nd build
Graphics Card MSI HD Radeon 5750 1gb - MSI HD Radeon 6450 on mini tower
Sound Card Creative Labs X-Fi XtremeGamer - Realtek onooard 2nd case
Monitor(s) Displays 2 x Acer P191W 19" widesscreen - HP 20" widescreen mini towe
Screen Resolution 1440x900 native - 1600x1024 on 7 Pro x64 build
Keyboard Microsoft Recusa Razor - MS Comfort 3000 on second build
Mouse MS Trackball Explorer - A4TECH dual scroll wheel trackball
PSU Corsair 750TX - primary / Corsair CX600 - second
Case Antec 900-2 - SSD compatible / NZXT Vulcan mini tower
Cooling Zalman CNPS9900A
Hard Drives Primary Ultimate x64 build-
WD Black Edition 1tb Sata 6.0 = 2
WD Black Edition 1tb Sata 3.0 = 2 (OS drives)
WD 1tb Green Power sata = 2 1 external
usb flash drives = 18
Second 7 Pro x64 mini tower-
WD Caviar SE 500gb sata II single drive presen
Internet Speed 30mbps upgrade - primary hard wired - mini tower usb WiFi
|
29 Oct 2009
|
| |
7600.20510 x86 5,842 posts |
| | My System Specs | | System Manufacturer/Model Number self built
OS 7600.20510 x86
CPU P4 550 3.4 GHz HT running at 3.5 GHz
Motherboard MSI PM8M3-V (MS-7211 v1.x) Micro-ATX mainboard
Memory OCZ 2 GB(2x1GB) DDR400mHz running @ 414 mHz
Graphics Card HIS Radeon HD 3850 IceQ 3 Turbo HDMI Dual DL-DVI AGP
Sound Card MOTU Traveler firewire studio interface 192 kHz 24 bit
Monitor(s) Displays 22" widescreen Acer X223W LCD, 17" Compaq P75 CRT
Screen Resolution 1680x1050 and 1280x1024
Keyboard Logitch Classical Keyboard 200
Mouse Logitech Mediaplay cordless
PSU 350W generic
Case Cybertronpc, it glows blue
Cooling stock cpu fan, Ice-Q 3 gpu and system, many case fans
Hard Drives SATA I x2 WD, 400 GB and 120 GB, SATA 2 WD Caviar Black 1 TB
Internet Speed 1792/448 kbits/sec
Other Info SATA II PCI fake RAID adapter, 1 GB Readyboost, original ATI Remote Wonder (even works with WMC perfectly), Logitech Rumblepad 2 game controller x2
|
29 Oct 2009
|
| |
|
Is it just me, or is Firefox starting to feel like IE6 with all these vulnerabilities appearing almost daily...  | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Systems by SmartEyeball
OS 8 Pro x64
CPU i7 3770K 4.6GHz
Motherboard ASUS P8Z77 WS
Memory 16GB G.Skill Trident X 2400mhz
Graphics Card 3x Gigabyte GTX 670 OC WindForce *TRI SLI*
Sound Card ALC898 / 5.1 receiver/ ATH-AD900 Headphones
Monitor(s) Displays x3 Dell U2410 / 58" Samsung / "40 Sony
Screen Resolution 5760*1200/ 1920*1200 / 1920*1080
Keyboard Topre Realforce // Ducky Shine MX Black // Filco Ninja TKL
Mouse Razer Imperator + Thermaltake Theron
PSU Corsair AX1200W
Case Thermaltake Level 10 GT Snow Edition
Cooling Noctua NH-D14
Hard Drives 2x Intel 520 240GB (RAID 0) * 2x WD Caviar Blacks 2TB (RAID 0) * 2TB WD Caviar Black
Antivirus MSE
Browser IE, FF
Other Info GT Extreme V2 Sim Racing Cockpit + 40" LCD and K/B Mouse stand ▼
Fanatec CSR Elite Wheel + Clubsport Pedals + CSR shifter/7GS ▼
Buttkicker v2 Seat Rumbler with Dedicated 5.1 and Sub Woofer attached to frame ▼
=
Bloody Big Grin
|
29 Oct 2009
|
| |
Windows 7 Home Premium x64 - Mac OS X 10.6.4 x64 5,970 posts North Carolina, United States of America |
Quote: Originally Posted by smarteyeball  Is it just me, or is Firefox starting to feel like IE6 with all these vulnerabilities appearing almost daily... You read my mind...
Nothing and I MEAN NOTHING is infallible...firefox is gaining ground in market share each day...the hackers have taken notice | | My System Specs | | System Manufacturer/Model Number Compal JFT02 (Custom Build Laptop)
OS Windows 7 Home Premium x64 - Mac OS X 10.6.4 x64
CPU Intel Core 2 Duo T9300 2.5 GHz
Motherboard JFT02
Memory 4GB Kingston DDR2-800
Graphics Card NVIDIA Geforce 8600M GT (512MB Model)
Sound Card Realtek HD Audio
Monitor(s) Displays WUXGA Standard Laptop Display
Screen Resolution 1680*1050
Keyboard Standard Laptop 105 Key-Keyboard
Mouse Synaptics Touchpad
PSU Standard Laptop Power Supply
Case Standard Laptop Case
Cooling Standard Laptop Cooling
Hard Drives Toshiba 320GB 5400RPM Laptop HD
Internet Speed Verizion Online DSL 3360/864 kbs (dl/up)
|
29 Oct 2009
|
| |
Windows 7 Ultimate x64, XP Mode, W8 RP VM, Linux Mint Debian 2nd OS HD- 7 Pro x64 second case 7,902 posts New England |
Quote: Originally Posted by Zidane24
Quote: Originally Posted by smarteyeball Is it just me, or is Firefox starting to feel like IE6 with all these vulnerabilities appearing almost daily... You read my mind...
Nothing and I MEAN NOTHING is infallible...firefox is gaining ground in market share each day...the hackers have taken notice I'm glad to see someone else has come to that realization! When the first reports about trojans being seen for FF everyone still raved about how secure FF was when placed against other browsers as well as IE.
Surprize! Due to FF's popularity it makes it a prime goal for malware writers to get at people preferring it! Eventually anything becomes just as vulnerable as something else once someone finds a few holes. | | My System Specs | | OS Windows 7 Ultimate x64, XP Mode, W8 RP VM, Linux Mint Debian 2nd OS HD- 7 Pro x64 second case
CPU AMD Phenom II X4 975 Deneb 3.6ghz - 965 on new mini tower
Motherboard Gigabyte GA-790XTA-UD4
Memory Kingston Hyper X DDR3 1600 1.5v 16gb - Mushkin on 2nd build
Graphics Card MSI HD Radeon 5750 1gb - MSI HD Radeon 6450 on mini tower
Sound Card Creative Labs X-Fi XtremeGamer - Realtek onooard 2nd case
Monitor(s) Displays 2 x Acer P191W 19" widesscreen - HP 20" widescreen mini towe
Screen Resolution 1440x900 native - 1600x1024 on 7 Pro x64 build
Keyboard Microsoft Recusa Razor - MS Comfort 3000 on second build
Mouse MS Trackball Explorer - A4TECH dual scroll wheel trackball
PSU Corsair 750TX - primary / Corsair CX600 - second
Case Antec 900-2 - SSD compatible / NZXT Vulcan mini tower
Cooling Zalman CNPS9900A
Hard Drives Primary Ultimate x64 build-
WD Black Edition 1tb Sata 6.0 = 2
WD Black Edition 1tb Sata 3.0 = 2 (OS drives)
WD 1tb Green Power sata = 2 1 external
usb flash drives = 18
Second 7 Pro x64 mini tower-
WD Caviar SE 500gb sata II single drive presen
Internet Speed 30mbps upgrade - primary hard wired - mini tower usb WiFi
|
29 Oct 2009
|
| |
Windows 7 x64 (SP1) 5,253 posts |
If Firefox implemented Sandboxing (aka., Protected Mode in IE) like IE and Chrome these drive-by download exploits would have been less of an issue! But meh, they didn't implement it in the 3.5 branch like they should have... http://netsecurity.about.com/od/secu...eprotected.htm http://blogs.msdn.com/ie/archive/2006/02/09/528963.aspx | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Alienware Aurora ALX R4
OS Windows 7 x64 (SP1)
CPU Intel Core i7-3930K (3.2GHz, Turbo 4GHz)
Motherboard Alienware Aurora-R4 x79
Memory 4x Samsung 4GB PC3-12800 DDR3 (16GB 1600MHz)
Graphics Card Nvidia Geforce GTX 690 (Stock)
Sound Card RealTek Integrated Audio
Monitor(s) Displays Dell UltraSharp U3011
Screen Resolution 2560x1600
PSU 875W Some Dell PSU <.<
Hard Drives Samsung P830 256 GB, WD Raptor 150GB, 2x 1TB HDDs
Other Info Dell Inspiron Mini 10v (Intel Atom N270 1.6 GHz; 1GB; Windows 7 Ultimate)
|
29 Oct 2009
|
| |
Windows 7 Ultimate x64, XP Mode, W8 RP VM, Linux Mint Debian 2nd OS HD- 7 Pro x64 second case 7,902 posts New England |
Don't forget that FF is still an open source browser while Google there is trying to make a big entrance and MS has worked to make serious improvements in IE. Hopefully the 4.0 version will take these things into consideration there. | | My System Specs | | OS Windows 7 Ultimate x64, XP Mode, W8 RP VM, Linux Mint Debian 2nd OS HD- 7 Pro x64 second case
CPU AMD Phenom II X4 975 Deneb 3.6ghz - 965 on new mini tower
Motherboard Gigabyte GA-790XTA-UD4
Memory Kingston Hyper X DDR3 1600 1.5v 16gb - Mushkin on 2nd build
Graphics Card MSI HD Radeon 5750 1gb - MSI HD Radeon 6450 on mini tower
Sound Card Creative Labs X-Fi XtremeGamer - Realtek onooard 2nd case
Monitor(s) Displays 2 x Acer P191W 19" widesscreen - HP 20" widescreen mini towe
Screen Resolution 1440x900 native - 1600x1024 on 7 Pro x64 build
Keyboard Microsoft Recusa Razor - MS Comfort 3000 on second build
Mouse MS Trackball Explorer - A4TECH dual scroll wheel trackball
PSU Corsair 750TX - primary / Corsair CX600 - second
Case Antec 900-2 - SSD compatible / NZXT Vulcan mini tower
Cooling Zalman CNPS9900A
Hard Drives Primary Ultimate x64 build-
WD Black Edition 1tb Sata 6.0 = 2
WD Black Edition 1tb Sata 3.0 = 2 (OS drives)
WD 1tb Green Power sata = 2 1 external
usb flash drives = 18
Second 7 Pro x64 mini tower-
WD Caviar SE 500gb sata II single drive presen
Internet Speed 30mbps upgrade - primary hard wired - mini tower usb WiFi
|
30 Oct 2009
|
| |
Windows 7 Professional (x64) 311 posts Los Angeles |
Quote: Originally Posted by Zidane24
Quote: Originally Posted by smarteyeball Is it just me, or is Firefox starting to feel like IE6 with all these vulnerabilities appearing almost daily... You read my mind...
Nothing and I MEAN NOTHING is infallible...firefox is gaining ground in market share each day...the hackers have taken notice Agreed. Just like those Mac commercials denouncing Windows. It's just that not enough people use Macs for there to be any benefit for hackers. IMO, Firefox is still the best browser thanks to the add-ons. | | My System Specs | | System Manufacturer/Model Number Cyberpower, Inc.
OS Windows 7 Professional (x64)
CPU AMD Phenom II X4 955 Black Edition
Motherboard Gigabyte AMD MA770T-UD3P AM3 DDR3 1666+/1333/1066
Memory 6GB (3 x 2GB) Kingston DDR3 1333 SDRAM
Graphics Card NVIDIA GeForce GTX 260
Sound Card Onboard 7.1 Sound
Monitor(s) Displays Samsung 24" SyncMaster 2422
Screen Resolution 1920 x 1200
Keyboard HTK-1001
Mouse Razer Viper
PSU Kingwin 700 Watt Power Supply
Case Silver X-Cruiser 2 Mid No Power
Cooling Asetek 120MM Watercooler
Hard Drives 500GB Sata II 3.0GB 16MB 7200RPM,
Western Digital 1TB USB 2.0 External Hard Drive
Internet Speed Incoming: 2496 kbps, Outgoing: 512 kbps
|
30 Oct 2009
|
| |
|
For me FF is still number 1 due to addons and the general speed of it, IE still seems rather clunky but i haven't used it on Windows 7 yet to be honest.
Then again people shouldn't just rely on a browser to keep them safe, anti-virus and anti-spyware are a given. | | My System Specs | | OS 7, XP
CPU Intel C2Q 6600
Memory 2 GB
Graphics Card ATi HD 4850
Monitor(s) Displays 22" LCD
Hard Drives 500GB Internal
Internet Speed 10mb
|
30 Oct 2009
|
| |
Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1 154 posts |
| | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz (Gateway computer)
OS Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
CPU Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz
Motherboard Gateway IPISB-VR
Memory 8.00 GB
Graphics Card Intel(R) HD Graphics
Sound Card (1) Realtek High Definition Audio (2) Intel(R) Display Aud
Monitor(s) Displays ViewSonic 2250 Series
Screen Resolution 1920 x 1080 x 32 bits (4294967296 colors) @ 60 Hz
Keyboard Gateway
Mouse Logitech
Hard Drives (1) WDC WD10EADX-22TDHB0 (2) Generic Mini SD Reader USB Device (3) Generic USB CF Reader USB Device (4) Generic USB MS Reader USB Device (5) Generic USB SD Reader USB Device (6) Generic USB xD/SM Reader USB Device (7) Seagate FreeAgent Go
Internet Speed 20 Mbps (Theoretical.)
Antivirus Avast
Browser Firefox
Firefox hit by multiple drive-by download flaws problems? All times are GMT -5. The time now is 01:05 PM. |  |
