Feeds

Safari and Firefox updates plug critical holes

Drive-by download guard

Remote control for virtualized desktops

Tuesday marked a busy day for alternative browser security updates with patches from both Apple and Mozilla.

An update to Apple's Safari browser resolves three vulnerabilities for Windows and two for OS X. One of the flaws is particular to Windows while the other two involve Safari's WebKit engine and affect both Mac and Win flavours of the browser.

All three of the vulnerabilities potentiality allow malicious code injection onto unpatched systems and therefore should be treated as high-priority, critical patches. Users are advised to update to Safari 5.0.2 and Safari 4.1.2 to guard against drive-by download attacks made possible by the flaws, as explained in an advisory from Apple here.

Mozilla also released an updated version of Firefox on Tuesday. Firefox version 3.6.9 resolves 14 vulnerabilities, 10 of which are critical, as explained here. Firefox shares a common codebase with Mozilla's Thunderbird email client and the SeaMonkey application suite, so both these packages also need updating to Thunderbird 3.1.3 and SeaMonkey 2.0.7, respectively. ®

Beginner's guide to SSL certificates

More from The Register

next story
Bada-Bing! Mozilla flips Firefox to YAHOO! for search
Microsoft system will be the default for browser in US until 2020
Be real, Apple: In-app goodie grab games AREN'T FREE – EU
Cupertino stands down after Euro legal threats
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
Nexus 7 fandroids tell of salty taste after sucking on Google's Lollipop
Web giant looking into why version 5.0 of Android is crippling older slabs
SLURP! Flick your TONGUE around our LOLLIPOP – Google
Android 5 is coming – IF you're lucky enough to have the right gadget
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Facebook, working on Facebook at Work, works on Facebook. At Work
You don't want your cat or drunk pics at the office
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Reducing the cost and complexity of web vulnerability management
How using vulnerability assessments to identify exploitable weaknesses and take corrective action can reduce the risk of hackers finding your site and attacking it.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.