Welcome to BrightSite by bright.net Internet Services
bright.net Anti-Virus Page
Navigation
Recent Entries
¤ "Fake Antivirus" - Removal Tool Now Available
¤ Scheduled Maintenance - Scam Message
¤ XP Antivirus 2008 - Trojan
¤ MSNBC Spam
¤ CNN Scam Mail
¤ View All
¤ Scheduled Maintenance - Scam Message
¤ XP Antivirus 2008 - Trojan
¤ MSNBC Spam
¤ CNN Scam Mail
¤ View All
Links
Antivirus Programs
¤ Avast Antivirus
¤ AVG - Free Anti-Virus
¤ Avira AntiVir
Information
¤ Syamantec Virus Info
¤ Unwantedlinks.com
¤ Virus Encyclopedia
¤ Virus Hoax
Misc/Patches
¤ Mozilla Firefox (Browser)
¤ Sasser Patch - 2000/XP
¤ Zobot Patch
Removal Tools
¤ Avast! Removal Tool
¤ Beagel Removal
¤ Mytob Removal Tool
¤ Netsky Fix Tool
¤ Sasser Removal Tool
¤ Sober (Choose version)
¤ Sober.C Removal (NEW)
¤ Sober.X Removal
¤ Stinger - Virus Removal Tool
¤ Virus Removal Tool List
¤ Virus Utilities
¤ Zobot Removal Tool
Spyware Removal
¤ Ad-Aware
¤ CW Shredder
¤ Hijackthis
¤ Malwarebytes
¤ SpyBot - Search & Destroy
¤ Windows Defender
¤ Avast Antivirus
¤ AVG - Free Anti-Virus
¤ Avira AntiVir
Information
¤ Syamantec Virus Info
¤ Unwantedlinks.com
¤ Virus Encyclopedia
¤ Virus Hoax
Misc/Patches
¤ Mozilla Firefox (Browser)
¤ Sasser Patch - 2000/XP
¤ Zobot Patch
Removal Tools
¤ Avast! Removal Tool
¤ Beagel Removal
¤ Mytob Removal Tool
¤ Netsky Fix Tool
¤ Sasser Removal Tool
¤ Sober (Choose version)
¤ Sober.C Removal (NEW)
¤ Sober.X Removal
¤ Stinger - Virus Removal Tool
¤ Virus Removal Tool List
¤ Virus Utilities
¤ Zobot Removal Tool
Spyware Removal
¤ Ad-Aware
¤ CW Shredder
¤ Hijackthis
¤ Malwarebytes
¤ SpyBot - Search & Destroy
¤ Windows Defender
Virus News
Firefox 1.5 exploits - Mac OS X/Linux
Malicious code that exploits a flaw in Mozilla's Firefox 1.5 browser has been released, making it imperative that users update to the latest version.
The exploit code makes use of a vulnerability that was reported last
week and for which Mozilla has already released a patch. However, those who have not yet installed it should do so immediately; Mozilla upgraded the severity rating of the security flaw from "moderate" to "critical".
The vulnerability allows a remote user to execute arbitrary code and gain full control over the victim machine. This is achieved through memory corruption via the QueryInterface on Location and Navigator objects. According to Mozilla, version 1.5 is the only version of Firefox affected. In addition, the Thunderbird 1.5 email client is also potentially vulnerable, but only if JavaScript is enabled, which is not the default setting. Mozilla itself recommends not enabling JavaScript in mail for security purposes.
The exploit released functions under Linux and Mac OS X. It is believed that the majority of users have had their browsers updated already via the autoupdate feature within Firefox. Mozilla strongly advises users who have not installed the fix to update immediately.
The exploit code makes use of a vulnerability that was reported last
week and for which Mozilla has already released a patch. However, those who have not yet installed it should do so immediately; Mozilla upgraded the severity rating of the security flaw from "moderate" to "critical".
The vulnerability allows a remote user to execute arbitrary code and gain full control over the victim machine. This is achieved through memory corruption via the QueryInterface on Location and Navigator objects. According to Mozilla, version 1.5 is the only version of Firefox affected. In addition, the Thunderbird 1.5 email client is also potentially vulnerable, but only if JavaScript is enabled, which is not the default setting. Mozilla itself recommends not enabling JavaScript in mail for security purposes.
The exploit released functions under Linux and Mac OS X. It is believed that the majority of users have had their browsers updated already via the autoupdate feature within Firefox. Mozilla strongly advises users who have not installed the fix to update immediately.
February 9th, 2006
bright.net does not support nor endorse these programs but have found some of them helpful. Many of the programs and links found on this page are for third-party applications and are to be used at your own risk. Should you encounter problems with the tools, you may need to consult a computer technician for further assistance.