Mozilla fixes Firefox flaws it introduced

Filed under
Moz/FF

Mozilla Corp. late yesterday updated the Firefox browser to patch a single security vulnerability and fix several bugs it unintentionally introduced in earlier versions.

Mozilla currently supports two branches of the open-source application, and the upgrades -- Firefox 2.0.0.3 and Firefox 1.5.0.11 -- are now available, according to the release notes posted on the company's Web site.

Mozilla said that the security flaw, though rated as a low threat, might be used by attackers to run a rudimentary port scan of systems within the same perimeter as the victimized machine. The attacker, however, would have to craft a malicious Web site and host it on an FTP server and then con users into visiting the page.

The main purpose of the update, however, was to fix several "regressions" -- unintended flaws introduced by changes to previous versions.

Full Story.