« Microsoft issues emergency patch for IE | Main | OWASP testing Guide Version 3.0 Released »

Firefox Halting 2.x security patching/support, urges users to upgrade to 3.0 or get pwned

"Mozilla has told Firefox users that it will no longer be updating version 2 of the browser and they should upgrade to version 3 right away. The warning came alongside a security update patching ten problems, four of them critical.

The critical problems involve cross-site scripting. That’s a serious concern as it allows the unauthorised transfer of data that a user sends to one site (such as a legitimate online bank) to another site (such as one used by hackers to harvest information).

Three of these issues affect all editions of the browser while the other is specific to version 2: a previous fix for that issue has now been found insufficient. However, Mozilla warns that that’s your lot, saying it “is not planning any further security and stability updates for Firefox 2, and recommends that you upgrade to Firefox 3 as soon as possible.”

The built-in ‘phishing protection’ service is also being withdrawn from Firefox 2, making the upgrade even more important."

Read more: http://tech.blorge.com/Structure:%20/2008/12/17/mozillas-security-warning-upgrade-to-firefox-3-today/
Download FireFox 3: http://www.mozilla.com/en-US/firefox/
Additional Information: http://blog.mozilla.com/blog/2008/12/16/firefox-305-and-20019-security-updates-now-available-for-download/


Feed You can follow this conversation by subscribing to the comment feed for this post.

All Comments are Moderated and will be delayed!