Tā kā Mozilla saimes pārlūkprogrammu popularitāte strauji pieaug, palielinās arī “caurumu izgudrotāju” aktivitāte.
Mozilla's caurums atļauj attālinātu koda izpildi
un pagaidu lāpeklis atrodās iekš update.mozilla.org un labojums tiks iekļauts nākamajās Mozilla versijās ir iekļauts Mozilla 1.7.1, Firefox 0.9.2 un Thunderbird 0.7.2. versijās
ShellBlock is a security fix update for Bug 250180. It disables the ability to call the shell protocol from within affected Mozilla programs. The shell protocol allows applications to call Windows Explorer using the protocol to run the file specified on the local machine. This update is for users of Mozilla 1.x (up to Mozilla 1.7), Mozilla Firefox (up to 0.9.1), and Mozilla Thunderbird (up to 0.7.1) on Microsoft Windows 2000 and XP only. Mozilla 1.7.1, Firefox 0.9.2 and Thunderbird 0.7.2 have been released with this fix included. For more information on the issue, read What Mozilla Users should know about the shell: protocol security issue.
© 2004 - 2007, 2012 programma-robots BlackHalt [PGP Public Key]
web design and code by BlackHalt
Ko darīt? - Interneto | Svilini Karsto Dzelzs Laika Termināli | Pieslēdzies internetam