Firefox Security Updates Now Available For Download
>> Thursday, August 6, 2009
"For your website using the Firefox browser, we strongly recommend to immediately upgrade your Firefox to the latest update," said Mozilla in the authorized website. What? What makes Mozilla to recommend it on their official website? Whether this strategy to increase the number of Mozilla hit their browser's download website?
Mozilla has just appeared menambal two major rift on the website browser besutan they are. One of the rift that attackers can exploit to create SSL certificates that are usually used to secure a website. This technique can work with a null character string to add a simple enough to field some certificate. Results from the addition of characters is very dangerous. Firefox can be "tricked" by a certificate that can make malicious attacker to create a service spoofery. Service spoofery may include banking, email, and several other sensitive services. Dangerous, is not it?
Cleft is Moxie found by Dan Kaminsky and Marlinspike. Moxie explains, by using this slit someone can make a program that is capable of making Firefox mengganggap all website in the world safe.
How about the second cleft? If you consider the two slit not more dangerous from the first slit, you big. Second there is this rift in the certificate authentication technology. By using this rift, attacker can have access to information that has been encrypted or even remove the fake update on Firefox.
So, for you who use Firefox veri version 3.5 or 3, immediately upgrade your Firefox to version 3.5.2 or version 3.0.13. Mozilla will also send a notification to make it easier to update you.
Mozilla has just appeared menambal two major rift on the website browser besutan they are. One of the rift that attackers can exploit to create SSL certificates that are usually used to secure a website. This technique can work with a null character string to add a simple enough to field some certificate. Results from the addition of characters is very dangerous. Firefox can be "tricked" by a certificate that can make malicious attacker to create a service spoofery. Service spoofery may include banking, email, and several other sensitive services. Dangerous, is not it?
Cleft is Moxie found by Dan Kaminsky and Marlinspike. Moxie explains, by using this slit someone can make a program that is capable of making Firefox mengganggap all website in the world safe.
How about the second cleft? If you consider the two slit not more dangerous from the first slit, you big. Second there is this rift in the certificate authentication technology. By using this rift, attacker can have access to information that has been encrypted or even remove the fake update on Firefox.
So, for you who use Firefox veri version 3.5 or 3, immediately upgrade your Firefox to version 3.5.2 or version 3.0.13. Mozilla will also send a notification to make it easier to update you.
- Firefox 3.5.2 is available at http://firefox.com/
- Firefox 3.0.13 is available at http://www.mozilla.com/firefox/all-older.html
0 Comment:
Post a Comment