Apparently there was a small sercurity problem with Firefox identified last week. Here is all the information I have on it at this time. I just downloaded and installed the latest version, 1.0.2
The first message below is from PC Tips, and the second is from the Mozilla website. You can follow the links in the second message below to download the latest version.
Hope this helps. -TD

FireFox Exploit <o =""></o>

If you're one of the proud Firefox users like me, then you may be happy to know that it has taken almost 6 percent of the online browser market with a goal of 10% by year's end. It's no great wonder why the browser is so popular—it has loads of great features including tabbed browsing and free plug-ins.<o =""></o>

Software manufacturers are starting to support FireFox with their applications so they can be more compatible with the masses. Then you have the security issue, being the “ new kid on the block” Firefox was natively more secure, hackers want the big numbers so they attack the most common programs, and in the Internet browser arena it's still overwhelmingly Internet Explorer in the lead. <o =""></o>

Now that FireFox has been out for a while, 6-7 months (which is equivalent to 3 computer years), and is becoming increasingly more popular, signs of rough waters may be on the horizon. It starts with a few ripples in the form of pop-up advertisements. Have you noticed the steady increase in pop-ups when using FireFox? If you haven't, more than likely you will shortly. With the ever-growing popularity of Firefox the more malicious code is going to be written for it (adware, spyware, viruses). <o =""></o>

Case in point: there's some new adware/spyware lurking about and apparently like's or really hates Neil Diamond. It's adware discovered at a website attached to some Neil Diamond's lyrics, and what it does is infect Internet Explorer through an alternate browser. The malware disguises itself as a java applet but is actually an Active-X component that seeks out your IE and then installs the actual intended code to it. This malicious code isn't limited to Firefox; some of the other alternative browsers can pass the code on to IE as well. <o =""></o>

In this scenario there is no virus or Trojan just some adware/spyware. This sort of cross-browser infection maybe just the tip of the ice burg, and the security that comes from simply using a browser other than IE may dwindle and fade. This is bad yet to be expected, Firefox in particular doesn't have the fast reaction to exploits and security holes that Mega Corporation Microsoft does. Threats from the Internet are constantly changing and you need a product that can handle the change. <o =""></o>

Microsoft will come out with their new internet Explorer 7 maybe this summer. You will more than likely see features that are incorporated in other browsers utilized in the new design. As a matter of fact Uncle Bill wasn't going to release the updated browser until Longhorn (the next windows build), but the other browsers are making it look bad, and Bill did some rethinking. Which is great because when companies compete the winners are the customers. <o =""></o>

All of this can all be summarized to mean “watch your back”—what's safe today may not be tomorrow. Hackers and psycho advertisers want you to feel safe even when your not. Update your FireFox or whatever browser you're using regularly and scrutinize applications that attempt to install or download onto your system. All things included there is not better security than common sense in most cases. <o =""></o>

Stay safe out there,<o =""></o>

~ Chad (PC Tips)<o =""></o>

<!--[if !supportEmptyParas]--> <!--[endif]--><o =""></o>

<!--[if !supportEmptyParas]--> <!--[endif]--><o =""></o>

MOZILLA FOUNDATION RELEASES SECURITY UPDATE TO FIREFOX<o =""></o>

Proactive security update fixes bug prior to any known exploits<o =""></o>

March 23, 2005, (Mountain View, CA). The Mozilla Foundation, a non-profit organization dedicated to preserving choice and promoting innovation on the Internet, today announced a security update for its Firefox Web browser. The update is a proactive security release to patch a bug identified by Internet Security Systems, a premier security research, products, and services company. No known exploits of the bug have been reported prior to the update's release. <o =""></o>

"The Mozilla Foundation is deeply committed to providing its users with the safest Internet experience possible," said Chris Hofmann, director of engineering for the Mozilla Foundation. "To deliver our users the experience they deserve, we must stay ahead of the curve in patching potential vulnerabilities. For example, the bug patched in this update has no known real world exploits, and we were able to provide a quick response." <o =""></o>

The Mozilla Foundation evaluates security issues on an ongoing basis and will issue security updates as warranted. Users are encouraged to download the software updates at www.mozilla.org.<o =""></o>

Firefox has been widely praised for its stability, trustworthiness and innovative features including tabbed browsing, live bookmarks, built-in pop-up blocking, and hundreds of available extensions. SC Magazine, a leading security magazine, recently awarded the Mozilla Foundation with its Editor in Chief award. The browser has been downloaded more that 30 million times and is available in 28 languages.<o =""></o>

For an executive Q&A with Chris Hofmann regarding Firefox 1.0.2, please contact Nick Leahy, 415.321.1864<o =""></o><o =""></o><o =""></o>

 

Thanks for the update.

 

My work just blocked Firefox 1.02 and AOL Instant Messanger. Said something about its not free in Corp enviornments and that we are breaking the law by using it an not paying for a license???

SOOOOOOOO.... we just rolled back to Fox 1.0 and loaded Miranda IM and all is well!

Silly Corporate IT guys

 

You need to say to your corp IT guys "show me". There is nothing on the Mozilla site about charging for Firefox, Thunderbird, or Mozilla except if you want a CD. Download is free.

If you would like to stay up to date on the versions of Mozilla, Firefox, and Thunderbird, you can subscibe to the news server "news.mozilla.org". There is an annoucement news group.

 

Your silly corporate IT and network admin guys are just keeping your system safe.

I don't know what kind of system you guys are on or how many servers you manage but some browsers and programs "seem" secure but they open unnecessary ports.

Hackers love free software, and know exactly which ports they do open up...
IF someone does get into your comp system your network admin will know who exactly opened the door for them, it won't be pretty.

Be careful.

 

How does one know what version of Firefox they have ? Anybody use the other web browser, Opera; and is it comparable to Mozilla's Firefox ?

 

Click on Help, then choose About Mozilla Firefox and it will tell you the version right there. As for Opera, my mom used it for a while in her work, but now uses Firefox and likes it much better. I think Firefox is a more streamlined program, that's why it opens so quickly. -TD

 

Thanks for the update TigerDan, am downloading it now...