The Channel logo


By | John Leyden 18th July 2007 11:05

Firefox lances IE bug

Pass the parcel bug binned

Mozilla has pushed out a new version of Firefox that fixes a number of security bugs, including a high-profile bug involving launching Firefox from Internet Explorer.

Firefox version also fixes a number of memory corruption and privilege escalation flaws, as explained in Mozilla's release notes here.

The release - available in Mac, Windows and Linux flavours - will be automatically pushed out to users within the next two days. Users still running running Firefox 1.5.0.x, which is no longer supported, are urged to upgrade to the Firefox 2 series.

In other security bug-related news, independent security researcher Michal Zalewski has unearthed a vulnerability in Internet Explorer, which might be exploited by a malicious website to spoof the address bar. The unpatched bug allows con-men to create more convincing phishing and revolves around flaws in the way IE7 implements the "" method of opening new browser windows.

An even more severe client-side risk comes from a pair of unpatched flaws in the Trillian multi-protocol IM client. Users are urged to disable the "aim://" URI handler in Trillian as a workaround, pending the delivery of security updates. ®

comment icon Read 1 comment on this article alert Send corrections


Frank Jennings

What do you do? Use manual typwriters or live in a Scottish croft? Our man advises
A rusty petrol pump at an abandoned gas station. Pic by Silvia B. Jakiello via shutterstock

Trevor Pott

Among other things, Active Directory needs an overhaul
Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Kat Hall

Plans for 2 million FTTP connections in next four years 'not enough'
Microsoft CEO Satya Nadella


League of gentlemen poster - Tubbs and Edward at the local shop. Copyright BBC
One reselling man tells his tale of woe