Feeds

Safari and Firefox updates plug critical holes

Drive-by download guard

Boost IT visibility and business value

Tuesday marked a busy day for alternative browser security updates with patches from both Apple and Mozilla.

An update to Apple's Safari browser resolves three vulnerabilities for Windows and two for OS X. One of the flaws is particular to Windows while the other two involve Safari's WebKit engine and affect both Mac and Win flavours of the browser.

All three of the vulnerabilities potentiality allow malicious code injection onto unpatched systems and therefore should be treated as high-priority, critical patches. Users are advised to update to Safari 5.0.2 and Safari 4.1.2 to guard against drive-by download attacks made possible by the flaws, as explained in an advisory from Apple here.

Mozilla also released an updated version of Firefox on Tuesday. Firefox version 3.6.9 resolves 14 vulnerabilities, 10 of which are critical, as explained here. Firefox shares a common codebase with Mozilla's Thunderbird email client and the SeaMonkey application suite, so both these packages also need updating to Thunderbird 3.1.3 and SeaMonkey 2.0.7, respectively. ®

Boost IT visibility and business value

More from The Register

next story
The Return of BSOD: Does ANYONE trust Microsoft patches?
Sysadmins, you're either fighting fires or seen as incompetents now
Munich considers dumping Linux for ... GULP ... Windows!
Give a penguinista a hug, the Outlook's not good for open source's poster child
Intel's Raspberry Pi rival Galileo can now run Windows
Behold the Internet of Things. Wintel Things
Linux Foundation says many Linux admins and engineers are certifiable
Floats exam program to help IT employers lock up talent
Microsoft cries UNINSTALL in the wake of Blue Screens of Death™
Cache crash causes contained choloric calamity
Eat up Martha! Microsoft slings handwriting recog into OneNote on Android
Freehand input on non-Windows kit for the first time
Linux kernel devs made to finger their dongles before contributing code
Two-factor auth enabled for Kernel.org repositories
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 10 endpoint backup mistakes
Avoid the ten endpoint backup mistakes to ensure that your critical corporate data is protected and end user productivity is improved.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.