Firefox hack attack warning

August 17, 2008 - 3:26PM


Several security holes have been discovered in Firefox and other software
from Mozilla.

The Thunderbird e-mail program and the Seamonkey program suite have also
been affected.

Users should update their software as soon as possible once patches become
available, recommends the German Federal Agency for Security in Information
Technology (BSI) in Bonn.

The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as well
as to Seamonkey. In the latter case, any version prior to 1.1.11 is
vulnerable to hacker attacks.

Those who do not receive automated updates can download them manually at
http://www.mozilla.com/firefox or http://www.seamonkey-project.org/releases.

No update is available as yet for Thunderbird, which is affected in all
versions prior to 2.0.0.16.

DPA

Bigbazza (Barry)

On Sun, 17 Aug 2008 19:22:25 +1000, "Bigbazza" >
wrote:

>Firefox hack attack warning
>
> August 17, 2008 - 3:26PM
>
>
>Several security holes have been discovered in Firefox and other software
>from Mozilla.
>
>The Thunderbird e-mail program and the Seamonkey program suite have also
>been affected.
>
<snip>
>
Turning off your computer when you're away from it will help prevent
hacker attacks (although why a hacker would *want* to attack you is
beyond me), keeps your house cooler and lowers the electricity bill.


--
I never worry about diets. The only carrots that interest me are the number of carats in a diamond.

Mae West

Bigbazza wrote:
> Firefox hack attack warning
>
> August 17, 2008 - 3:26PM
>
>
> Several security holes have been discovered in Firefox and other
> software from Mozilla.
>
> The Thunderbird e-mail program and the Seamonkey program suite have also
> been affected.
>
> Users should update their software as soon as possible once patches
> become available, recommends the German Federal Agency for Security in
> Information Technology (BSI) in Bonn.
>
> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
> well as to Seamonkey. In the latter case, any version prior to 1.1.11 is
> vulnerable to hacker attacks.
>
> Those who do not receive automated updates can download them manually at
> http://www.mozilla.com/firefox or
> http://www.seamonkey-project.org/releases.
>
> No update is available as yet for Thunderbird, which is affected in all
> versions prior to 2.0.0.16.
>
> DPA
>
> Bigbazza (Barry)

Funny, I've received no such warning.

<been using Firefox and Thunderbird for a few years, too>

Pennyaline wrote:
> Bigbazza wrote:
>> Firefox hack attack warning
>>
>> August 17, 2008 - 3:26PM
>>
>>
>> Several security holes have been discovered in Firefox and other
>> software from Mozilla.
>>
>> The Thunderbird e-mail program and the Seamonkey program suite have
>> also been affected.
>>
>> Users should update their software as soon as possible once patches
>> become available, recommends the German Federal Agency for Security in
>> Information Technology (BSI) in Bonn.
>>
>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
>> well as to Seamonkey. In the latter case, any version prior to 1.1.11
>> is vulnerable to hacker attacks.
>>
>> Those who do not receive automated updates can download them manually
>> at http://www.mozilla.com/firefox or
>> http://www.seamonkey-project.org/releases.
>>
>> No update is available as yet for Thunderbird, which is affected in
>> all versions prior to 2.0.0.16.
>>
>> DPA
>>
>> Bigbazza (Barry)
>
> Funny, I've received no such warning.
>
> <been using Firefox and Thunderbird for a few years, too>
Probably because, like me, you're using the latest releases that aren't
affected.

George Shirley wrote:
> Pennyaline wrote:
>> Bigbazza wrote:
>>> Firefox hack attack warning
>>>
>>> August 17, 2008 - 3:26PM
>>>
>>>
>>> Several security holes have been discovered in Firefox and other
>>> software from Mozilla.
>>>
>>> The Thunderbird e-mail program and the Seamonkey program suite have
>>> also been affected.
>>>
>>> Users should update their software as soon as possible once patches
>>> become available, recommends the German Federal Agency for Security
>>> in Information Technology (BSI) in Bonn.
>>>
>>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1
>>> as well as to Seamonkey. In the latter case, any version prior to
>>> 1.1.11 is vulnerable to hacker attacks.
>>>
>>> Those who do not receive automated updates can download them manually
>>> at http://www.mozilla.com/firefox or
>>> http://www.seamonkey-project.org/releases.
>>>
>>> No update is available as yet for Thunderbird, which is affected in
>>> all versions prior to 2.0.0.16.
>>>
>>> DPA
>>>
>>> Bigbazza (Barry)
>>
>> Funny, I've received no such warning.
>>
>> <been using Firefox and Thunderbird for a few years, too>
> Probably because, like me, you're using the latest releases that aren't
> affected.

I'm not using the latest version of seamonkey, and I haven't
gotten any warning or update notice. Nonetheless...

--
Jean B.

Jean B. wrote:
> George Shirley wrote:
>> Pennyaline wrote:
>>> Bigbazza wrote:
>>>> Firefox hack attack warning
>>>>
>>>> August 17, 2008 - 3:26PM
>>>>
>>>>
>>>> Several security holes have been discovered in Firefox and other
>>>> software from Mozilla.
>>>>
>>>> The Thunderbird e-mail program and the Seamonkey program suite have
>>>> also been affected.
>>>>
>>>> Users should update their software as soon as possible once patches
>>>> become available, recommends the German Federal Agency for Security
>>>> in Information Technology (BSI) in Bonn.
>>>>
>>>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1
>>>> as well as to Seamonkey. In the latter case, any version prior to
>>>> 1.1.11 is vulnerable to hacker attacks.
>>>>
>>>> Those who do not receive automated updates can download them
>>>> manually at http://www.mozilla.com/firefox or
>>>> http://www.seamonkey-project.org/releases.
>>>>
>>>> No update is available as yet for Thunderbird, which is affected in
>>>> all versions prior to 2.0.0.16.
>>>>
>>>> DPA
>>>>
>>>> Bigbazza (Barry)
>>>
>>> Funny, I've received no such warning.
>>>
>>> <been using Firefox and Thunderbird for a few years, too>
>> Probably because, like me, you're using the latest releases that
>> aren't affected.
>
> I'm not using the latest version of seamonkey, and I haven't gotten any
> warning or update notice. Nonetheless...
>
I don't even use Seamonkey so can't vouch for that one.

On Sun, 17 Aug 2008 19:45:05 -0500, George Shirley wrote:

> Pennyaline wrote:
>> Bigbazza wrote:
>>> Firefox hack attack warning
>>>
>>> August 17, 2008 - 3:26PM
>>>
>>>
>>> Several security holes have been discovered in Firefox and other
>>> software from Mozilla.
>>>
>>> The Thunderbird e-mail program and the Seamonkey program suite have
>>> also been affected.
>>>
>>> Users should update their software as soon as possible once patches
>>> become available, recommends the German Federal Agency for Security in
>>> Information Technology (BSI) in Bonn.
>>>
>>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
>>> well as to Seamonkey. In the latter case, any version prior to 1.1.11
>>> is vulnerable to hacker attacks.
>>>
>>> Those who do not receive automated updates can download them manually
>>> at http://www.mozilla.com/firefox or
>>> http://www.seamonkey-project.org/releases.
>>>
>>> No update is available as yet for Thunderbird, which is affected in
>>> all versions prior to 2.0.0.16.
>>>
>>> DPA
>>>
>>> Bigbazza (Barry)
>>
>> Funny, I've received no such warning.
>>
>> <been using Firefox and Thunderbird for a few years, too>
> Probably because, like me, you're using the latest releases that aren't
> affected.

for firefox, there's an option under tools/options/updates to automatically
check for updates to firefox and your add-ons. it seems to me they send
out an update to f.f. every couple of months. (oddly, though, they haven't
asked me if i want 3.0.1.)

your pal,
blake

blake murphy wrote:
> On Sun, 17 Aug 2008 19:45:05 -0500, George Shirley wrote:
>
>> Pennyaline wrote:
>>> Bigbazza wrote:
>>>> Firefox hack attack warning
>>>>
>>>> August 17, 2008 - 3:26PM
>>>>
>>>>
>>>> Several security holes have been discovered in Firefox and other
>>>> software from Mozilla.
>>>>
>>>> The Thunderbird e-mail program and the Seamonkey program suite have
>>>> also been affected.
>>>>
>>>> Users should update their software as soon as possible once patches
>>>> become available, recommends the German Federal Agency for Security in
>>>> Information Technology (BSI) in Bonn.
>>>>
>>>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
>>>> well as to Seamonkey. In the latter case, any version prior to 1.1.11
>>>> is vulnerable to hacker attacks.
>>>>
>>>> Those who do not receive automated updates can download them manually
>>>> at http://www.mozilla.com/firefox or
>>>> http://www.seamonkey-project.org/releases.
>>>>
>>>> No update is available as yet for Thunderbird, which is affected in
>>>> all versions prior to 2.0.0.16.
>>>>
>>>> DPA
>>>>
>>>> Bigbazza (Barry)
>>> Funny, I've received no such warning.
>>>
>>> <been using Firefox and Thunderbird for a few years, too>
>> Probably because, like me, you're using the latest releases that aren't
>> affected.
>
> for firefox, there's an option under tools/options/updates to automatically
> check for updates to firefox and your add-ons. it seems to me they send
> out an update to f.f. every couple of months. (oddly, though, they haven't
> asked me if i want 3.0.1.)
>
> your pal,
> blake
I've been getting the updates without a problem and am using version
2.0.0.16 with updates. Haven't seen 3.0.1 offered as yet. I'm happy with
both ff and T-bird.

On Mon, 18 Aug 2008 10:42:41 -0500, George Shirley
> wrote:

>I've been getting the updates without a problem and am using version
>2.0.0.16 with updates. Haven't seen 3.0.1 offered as yet. I'm happy with
>both ff and T-bird.

I have a feeling it updates whatever version you have. I get updates
several times a week, so I was surprised to find my browser version
was way behind when I put FF on a new computer.


--
I never worry about diets. The only carrots that interest me are the number of carats in a diamond.

Mae West

blake murphy wrote:

> for firefox, there's an option under tools/options/updates to automatically
> check for updates to firefox and your add-ons. it seems to me they send
> out an update to f.f. every couple of months. (oddly, though, they haven't
> asked me if i want 3.0.1.)

Me either! I'm glad you mentioned it. I was feeling a little left-out <g>

--
Janet Wilder
Bad spelling. Bad punctuation
Good Friends. Good Life

On Mon, 18 Aug 2008 13:38:28 -0500, Janet Wilder wrote:

> blake murphy wrote:
>
>> for firefox, there's an option under tools/options/updates to automatically
>> check for updates to firefox and your add-ons. it seems to me they send
>> out an update to f.f. every couple of months. (oddly, though, they haven't
>> asked me if i want 3.0.1.)
>
> Me either! I'm glad you mentioned it. I was feeling a little left-out <g>

maybe it's quasi-beta status or something. i haven't gone to the site
proper to check.

your pal,
blake

On Sun, 17 Aug 2008 18:00:12 -0600, Pennyaline
> wrote:

>Bigbazza wrote:
>> Firefox hack attack warning
>>
>> August 17, 2008 - 3:26PM
>>
>>
>> Several security holes have been discovered in Firefox and other
>> software from Mozilla.
>>
>> The Thunderbird e-mail program and the Seamonkey program suite have also
>> been affected.
>>
>> Users should update their software as soon as possible once patches
>> become available, recommends the German Federal Agency for Security in
>> Information Technology (BSI) in Bonn.
>>
>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
>> well as to Seamonkey. In the latter case, any version prior to 1.1.11 is
>> vulnerable to hacker attacks.
>>
>> Those who do not receive automated updates can download them manually at
>> http://www.mozilla.com/firefox or
>> http://www.seamonkey-project.org/releases.
>>
>> No update is available as yet for Thunderbird, which is affected in all
>> versions prior to 2.0.0.16.
>>
>> DPA
>>
>> Bigbazza (Barry)
>
>Funny, I've received no such warning.
>
><been using Firefox and Thunderbird for a few years, too>

Could be they are set to automatically update. I also use Firefox and
Thunderbird and they are both at the latest revision, without any
effort on my part.

Ron Kelley

On Sun, 17 Aug 2008 21:43:32 -0700, Ron wrote:

> On Sun, 17 Aug 2008 18:00:12 -0600, Pennyaline
> > wrote:
>
>>Bigbazza wrote:
>>> Firefox hack attack warning
>>>
>>> August 17, 2008 - 3:26PM
>>>
>>>
>>> Several security holes have been discovered in Firefox and other
>>> software from Mozilla.
>>>
>>> The Thunderbird e-mail program and the Seamonkey program suite have also
>>> been affected.
>>>
>>> Users should update their software as soon as possible once patches
>>> become available, recommends the German Federal Agency for Security in
>>> Information Technology (BSI) in Bonn.
>>>
>>> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
>>> well as to Seamonkey. In the latter case, any version prior to 1.1.11 is
>>> vulnerable to hacker attacks.
>>>
>>> Those who do not receive automated updates can download them manually at
>>> http://www.mozilla.com/firefox or
>>> http://www.seamonkey-project.org/releases.
>>>
>>> No update is available as yet for Thunderbird, which is affected in all
>>> versions prior to 2.0.0.16.
>>>
>>> DPA
>>>
>>> Bigbazza (Barry)
>>
>>Funny, I've received no such warning.
>>
>><been using Firefox and Thunderbird for a few years, too>
>
> Could be they are set to automatically update. I also use Firefox and
> Thunderbird and they are both at the latest revision, without any
> effort on my part.
>
> Ron Kelley

automatic updates are a choice under tools/options/updates.

your pal,
blake

Bigbazza wrote:
> Firefox hack attack warning
>
> August 17, 2008 - 3:26PM
>
>
> Several security holes have been discovered in Firefox and other
> software from Mozilla.
>
> The Thunderbird e-mail program and the Seamonkey program suite have also
> been affected.
>
> Users should update their software as soon as possible once patches
> become available, recommends the German Federal Agency for Security in
> Information Technology (BSI) in Bonn.
>
> The warning applies to Firefox versions prior to 2.0.0.16 and 3.0.1 as
> well as to Seamonkey. In the latter case, any version prior to 1.1.11 is
> vulnerable to hacker attacks.
>
> Those who do not receive automated updates can download them manually at
> http://www.mozilla.com/firefox or
> http://www.seamonkey-project.org/releases.
>
> No update is available as yet for Thunderbird, which is affected in all
> versions prior to 2.0.0.16.
>
> DPA
>
> Bigbazza (Barry)
>
>

Interesting piece of information. It's really vague and says nothing
about the nature of the attack. I don't feel there's any need to update
anything based on this one isolated report. Who the heck is BSI?

OTOH, who the heck is DSI? :-)