Mozilla patches flaws in Firefox, Thunderbird, and SeaMonkey

Mozilla has released updates for three of its open-source applications, namely Firefox, Thunderbird, and SeaMonkey, which is a developer kit.

Bugs found in Thunderbird and now patched include an error in the handling of Script objects, and errors in the layout engine and memory corruption errors in the JavaScript engine, according to Secunia, the security analysts.

The vulnerabilities, Secunia wrote in an advisory, “can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, and potentially compromise a vulnerable system”.

Issues in version 1.5 of Firefox that are also addressed by the patch were labelled critical by two different security firms.

Mozilla has said that it will only support Firefox version 1.5 until October 2007, by which time it expects everyone to have upgraded to the recently-released version 2.0.

The company doesn’t release updates to its software as a monthly event as Microsoft does, but this is perhaps because it’s less targeted by hackers as fewer people use its software. It previously released a security patch in September.

• Comment on this story for your chance to win a TomTom XL Live IQ Routes Europe

Latest in Software

• NEWS Twitter to charge in Japan
• NEWS The low down: Best Software, Service, App 2009
• NEWS WEBSITE OF THE DAY - love the mo
• NEWS VIDEO OF THE DAY - Lego Matrix
• NEWS Virgin Media to monitor filesharers

Latest on Pocket-lint.com

• NEWS 10 perfect Christmas presents for...music geeks
• NEWS Disney planning first 3D subtitles
• NEWS Motorola Milestone exclusive to Expansys
• NEWS VIDEO: Aardman makes Nintendo DSi ad with Flipnote Studio
• NEWS Panasonic discontinuing Technics 1200 turntables?