Computer Help Community

Community

Cyber Tech Help Community

New Tutorials

More Tutorials
PC Tutorials

New Downloads

More Downloads
PC Downloads

Member Testimonials

Open Member Quote   Just had to post a note to say how impressed I am with this site. I only discovered it a few days ago and I have to confess that I am a TOTAL non-starter with computers...but very keen and willing to learn! :D I have asked for - and received - prompt help in partitioning my hard drive although I decided after sucessfully doing it, to go back to normal coz other stuff confused me! Still, I am upgrading to a faster processor and bigger hard drive in the very near future so will be carrying out the procedure again (I hope) Just wanted to say how grateful I am for the support and I will be recommending the site to all my friends - peachyglint1  Close Member Quote
Member Testimonials
MY CYBER TECH HELP

LATEST TOPICS

Tech Help Community

Free Antivirus Scan

Free Virus Scan and a listing of the top 10 viruses in the wild - Free Antivirus Scan
Free Online Antivirus Scan

File Extension Database

Find what program a filetype belongs to in our searchable File Extension Database.
File Extension Database

Services

See what services Cyber Tech Help can offer your business or website: CTH Services
CTH Services

Related MS Links

Related Links
Cyber Tech Help Community

To the top of the page to top

 



Mozilla Patches QuickTime/Firefox Flaw

Latest News Latest News | News ArchiveNews Archive | Cyber Tech Help News RSS Feed!

Mozilla Patches QuickTime/Firefox FlawMozilla Patches QuickTime/Firefox Flaw

Posted by: Tweaker
Date added: 23:33, 19th September 2007 GMT
Source: Eweek News

Firefox

Mozilla has released a patch today for its popular Firefox webbrowser which ditches the ability to run arbitrary script from the Firefox command line, a quick fix for a year-old QuickTime bug that could be used to take over user systems. Security researcher Petko D. Petkov on Sept. 12 posted proof-of-concept code showing that the low-risk, year-old QuickTime bug could easily be turned into a high-risk attack on Firefox, Internet Explorer, Skype and other programs. Petkovaka pdpshowed how QuickTime media formats can be used to get into Firefox, leading to full browser compromise and perhaps even to compromise of the underlying operating system.

Mozilla said that its fix for MFSA 2007-23 was supposed to stop this type of attack but that QuickTime calls the browser in an unexpected way that bypasses that fix. So, to protect Firefox users, it's stripping out the ability to run arbitrary script from the command line entirely. Don't worry, though; until Apple has fixed the issue in QuickTime, QuickTime Media-link files can still be used to annoy users, Mozilla said. "Other command-line options remain, and QuickTime Media-link files could still be used to annoy users with popup windows and dialogs until this issue is fixed in QuickTime," the open-source foundation said in its post.

Tools:  Tools: Post a comment | Link to this news item | Send to a friend | Submit News

 

Post a commentPost a comment

Error: You are not logged in.

In order to leave comments to news articles you must be a Cyber Tech Help Member.

Registration is completely free!  Register to become a member!  Register to become a member

Along with access to leave comments to news articles you will be able to ask any computing questions you might have on the Cyber Tech Help Forums.

 

[ To the top of the page To top | Latest News Latest News | News Archive News Archive | Cyber Tech Help News RSS Feed! ]