	Breaking eBusiness and Search News
Advertise \| Newsletter \| Sitemap \| News Feeds

WebProNews Search

Part of the iEntry network

Firefox 1.0.4 Release Thwarts Recent Exploits

David Utter
Expert Author
Published: 2005-05-12

WebProNews RSS Feed

Two critical security holes in the Firefox browser have been patched in this latest software release.

Cross-site scripting exploits, exposure to potential external takeover of a browser, these were supposed to be problems experienced by the Windows world of Internet Explorer.

Not Firefox. Not with recommendations from industry analysts advising against using IE in favor of Firefox and its more secure architecture. Even the esteemed Walt Mossberg, Wall Street Journal technology columnist, extols its virtues. But it did happen.

Two exploits with proof-of-concept code demonstrated a potential for cross-site scripting and for an installer with a corrupt package icon. Welcome to IE's world, Firefox. Don't feel bad; even OpenBSD had a remote hole in the default install, but that was nearly eight years ago.

Cross-site scripting has become the new Internet nemesis, taking unwitting users to a site that looks like a legitimate one and stealing whatever information the user enters there. Just about every financial site on the planet has been spoofed by thieves seeking an easy score.

But the Mozilla foundation responded very quickly, detailing the potential exploits in a security release, and then making a new fixed version of Firefox available. This is the strength of open source, its advocates will tell you.

Open source code doesn't hide in proprietary packages, where a developer or a business remains ignorant of potential bugs until someone has cracked their web site and made off with a few thousand credit card numbers. Continual review and recommendations from knowledgeable folks around the world make software like Firefox better.

Give credit to the Mozilla team for stepping up and getting Firefox fixed. But don't worry, IE users. Your next update will be along the second Tuesday of next month. Hope you're ok until then.

Receive Our Daily Email of Breaking eBusiness News

About the Author:
David Utter is a staff writer for WebProNews covering technology and business. Email him here.

WebProNews RSS Feed

More Articles

Contact WebProNews

TOP NEWS

WebProNews is part of the iEntry network

Internet Business:	Marketing:	Small Business:
WebProNews	MarketingNewz	SmallBusinessNewz
WebProWorld	AdvertisingDay	PromoteNews
EcommNewz	SalesNewz	EntrepreneurNewz

Software:	Search Engines:	Web Design:
WebMasterFree	Jayde B2B	DesignNewz
NetworkingFiles	SearchZA	FlashNewz
SecurityConfig	SearchNewz	WebSiteNotes

Developer:	IT Management:	Security:
DevWebPro	ITManagement	SecurityProNews
DevNewz	SysAdminNews	SecurityConfig
TheDevWeb	NetworkingFiles	NetworkNewz

The iEntry Network consists of over 100 web publications reaching millions of Internet Professionals. Contact us to advertise.

eBUSINESS RESOURCES

About WebProNews

WebProNews is the number one source for eBusiness News. Over 5 million eBusiness professionals read WebProNews and other iEntry business and tech publications.

WebProNews provides real-time coverage of internet business.

Free Email Newsletters:

WebProNews	SearchNewz
WebProWorld	DevWebPro
Marketing	SecurityNews

Plus over 100 other newsletters!

Send me relevant info on products and services.

Ten most recent posts.

Featured Software

View all recent mentions of WebProNews from around the world!

Recent Articles On ...

Google	eBusiness
Yahoo	Ask Jeeves
MSN	Blogs
Search Engines	Blogging
Affiliate Programs	Marketing
eCommerce	Advertising
eBay	Sun Microsystems
AOL	Adsense
Microsoft	Adwords
Oracle	IBM
Amazon	Apple
SEM	Mac
SEO	iPod
Adsense	XBox
PR	Adobe