2007 August 06 | Stan's List

Calendar

August 2007
M	T	W	T	F	S	S
« Jul		Sep »
	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

You are currently browsing the Stan’s List weblog archives for the day Monday, August 6th, 2007.

Info End -->

Categories

You are currently browsing the Stan’s List weblog archives for the day Monday, August 6th, 2007.

Mozilla releases SeaMonkey 1.1.4 | August 6th, 2007

SeaMonkey 1.1.4, Mozilla’s integrated Web suite provides these security fixes over v1.1.3:

* MFSA 2007-27 Unescaped URIs passed to external programs
* MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
* MFSA 2007-23 Remote code execution by launching SeaMonkey from Internet Explorer

The rough changelog provides these changes over v1.1.3, including the security fixes:

* 388121 about:blank loaded by chrome in particular ways has chrome privileges
* 389106 we may not escape quotes everywhere
* 389580 some schemes with %00 launch unexpected handlers on windows
* 389257 Cross-application scripting vulnerability in SeaMonkey

No Comments Yet | Security, The Internet | Oodles | trackback