Monday, February 9, 2009

Mozilla Firefox 3.0.6

The latest release fixed several security issues:

MFSA 2009-06 Directives to not cache pages ignored

MFSA 2009-05 XMLHttpRequest allows reading HTTPOnly cookies

MFSA 2009-04 Chrome privilege escalation via local .desktop files

MFSA 2009-03 Local file stealing with SessionStore

MFSA 2009-02 XSS using a chrome XBL method and window.eval

MFSA 2009-01 Crashes with evidence of memory corruption (rv:

No comments: