Mozilla Rules Out Bug in Its Firefox
There is clamor that the recent version of Firefox web browser is loaded
with two flaws. Owner of the browser, Mozilla Foundation has, however,
called the reports to be just noise without holding substance.
People hunting bugs are speedily racing to unfold new security
vulnerabilities in both Firefox 2.0 and Internet Explorer 7. There were
reports of at least two bugs that were found to affect the new Firefox
release.
The non-profit organization, Mozilla, after releasing Firefox 2.0
recently, said that the problems claimed in the new browser and reported
on two most favored 'computer security e-mail discussion lists' were
exaggerated and do not summon real risk.
Mozilla's 'head of security', Window Snyder said that she would call it
just noise and denied the report. Snyder said that there was originally a
problem but that was resolved. A similar one that emerged and causes
Firefox to dysfunction does not mean users will face a security breach.
The earlier Firefox bug was thought to be critical and was fixed in
September but the strange part is that Mozilla should leave a condition of
'violent fall' in Firefox 2.0. It is indeed a matter of concern if a flaw
can cause an application to become dysfunctional, as it might be
susceptible to exploit. It seems that some alterations were made to make
the exploit condition appear diminished while the crash condition still
remains.
Synder said the issues relating to the exploit were resolved. The crash
that exists is just a 'denial of service'. She promises to take a closer
look at it to ensure there is no problem.
A different report on the 'Full Disclosure Mailing List' suggested that
the flaw in Firefox 2.0 could be misused in cyber scams. Snyder said the
report indicated a computer code but insufficient to determine if there is
a problem. She said there weren't yet any information to detect it but if
the company got more information on the matter, they would certainly
investigate.
Mozilla released Firefox 2.0 a week after Microsoft's IE 7. Both browsers
emphasize on security and carry phishing shields to protect from data
theft via fraudulent websites.
Related article: Mozilla Introduces Patches To Cure Product Flaws
ยป SPAMfighter News - 10/31/2006