The Mozilla Foundation has released an updated version of Firefox following the discovery of multiple security vulnerabilities involving the popular browser software.

The flaws create a means for hackers to conduct cross-site scripting or to otherwise seize control of vulnerable systems.

Many of the bugs involved the handling of JavaScript code while others involve memory corruption errors, as explained in a run-down by security notification firm Secunia here [1], that contains links to the relevant Mozilla Foundation advisories.

Firefox fans are urged to upgrade [2] to version 1.5.0.5 of the browser software in order to guard against security attacks.

A related set of vulnerabilities - along with a security bug [3] involving the processing of vCard attachments - mean Thunderbird email client and Mozilla SeaMonkey application suite users also need to upgrade to version 1.5.0.5 and version 1.0.3 of these software packages, respectively, as explained here [4] and here [5]. ®

Links

1. http://secunia.com/advisories/19873
2. http://www.mozilla.com/firefox
3. http://www.mozilla.org/security/announce/2006/mfsa2006-49.html
4. http://secunia.com/advisories/21228/
5. http://secunia.com/advisories/21229/

Related stories

• Mozilla prepares for SeaMonkey 2.0 release (14 September 2009)

  http://www.channelregister.co.uk/2009/09/14/mozilla_seamonkey_2_0_beta_2/

• Mozilla creates start-up to recruit email developers (18 September 2007)

  http://www.theregister.co.uk/2007/09/18/mozilla_thunderbird/

• Firefox 3 alpha unleashed (11 December 2006)

  http://www.channelregister.co.uk/2006/12/11/firefox_3_alpha/

• Mozilla flaws more joke than jeopardy (5 October 2006)

  http://www.channelregister.co.uk/2006/10/05/mozilla_flaw_joke/

• Firefox JavaScript risk downplayed (3 October 2006)

  http://www.channelregister.co.uk/2006/10/03/firefox_zero_day_exploit/

• Mozilla security takes axe to redundant code (15 September 2006)

  http://www.channelregister.co.uk/2006/09/15/firefox_security/

• Just how buggy is Firefox? (8 September 2006)

  http://www.channelregister.co.uk/2006/09/08/firefox_bug_analysis/

• Real inks Mozilla distro deal (3 August 2006)

  http://www.channelregister.co.uk/2006/08/03/real_firefox_distro_deal/

• Daily flaws ratchet up debate (17 July 2006)

  http://www.theregister.co.uk/2006/07/17/disclosure_debate/

• Firefox vuln fails to imperil World Cup (5 June 2006)

  http://www.channelregister.co.uk/2006/06/05/firefox_vuln/

• Firefox under fire from multiple security bugs (18 April 2006)

  http://www.theregister.co.uk/2006/04/18/firefox_security_update/

• Thunderbird is go (12 January 2006)

  http://www.channelregister.co.uk/2006/01/12/thunderbird/

• Small security bug in Firefox, users unscathed (12 December 2005)

  http://www.channelregister.co.uk/2005/12/12/firefox_history_file_bug/

• Firefox update fixes stability glitches (21 July 2005)

  http://www.channelregister.co.uk/2005/07/21/moz_stability_update/

• Ssshhh! Opera slips out security update (17 June 2005)

  http://www.channelregister.co.uk/2005/06/17/opera_security_update/