Monthly Archives: July 2010

Firefox 3.6.7 Released

Firefox 3.6.7 has been realased to fix some stability issues & some security issues in 3.6.6:

  • MFSA 2010-47 Cross-origin data leakage from script filename in error messages
  • MFSA 2010-46 Cross-domain data theft using CSS
  • MFSA 2010-45 Multiple location bar spoofing vulnerabilities
  • MFSA 2010-44 Characters mapped to U+FFFD in 8 bit encodings cause subsequent character to vanish
  • MFSA 2010-43 Same-origin bypass using canvas context
  • MFSA 2010-42 Cross-origin data disclosure via Web Workers and importScripts
  • MFSA 2010-41 Remote code execution using malformed PNG image
  • MFSA 2010-40 nsTreeSelection dangling pointer remote code execution vulnerability
  • MFSA 2010-39 nsCSSValue::Array index integer overflow
  • MFSA 2010-38 Arbitrary code execution using SJOW and fast native function
  • MFSA 2010-37 Plugin parameter EnsureCachedAttrParamArrays remote code execution vulnerability
  • MFSA 2010-36 Use-after-free error in NodeIterator
  • MFSA 2010-35 DOM attribute cloning remote code execution vulnerability
  • MFSA 2010-34 Miscellaneous memory safety hazards (rv:1.9.2.7/ 1.9.1.11)

Microsoft Security Bulletin Summary for July 2010

Microsoft Have released their updates for the month the following are the issues patched:

  • Vulnerability in Help and SupportCenter Could Allow Remote Code Execution (2229593)
  • Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276)
  • Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution (982335)
  • Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)

Microsoft Security Bulletin Summary for July 2010

Vulnerability in Help and SupportCenter Could Allow Remote Code Execution (2229593)

Support for Windows 2000 Ends

Today is the day that support for Windows 2000 ends, this means that basically no more patches if your still using it, also Microsoft probably don’t give a hoot about you as you haven’t bothered to replace your OS in 10 year. Of course there aren’t many people still using Windows 2000 so this probably wont mean much at all.

If you want to know more see the Microsoft Support Life-cycle Policy FAQ.