SillyDog701

Message Centre 3.0

Skip to content

Firefox 2.0.0.3, and 1.5.0.11 Now Available for Download

Firefox, Thunderbird, SeaMonkey, Camino, Mozilla, Netscape 6/7/8/9, and all Gecko-based browsers discussion and support forum.
(MozInfo701, Netscape Browser Archive)

Moderators: Antony, Edward, profman, Ramona

Post a reply

Postby Fulvio » Wed 21 Mar, 2007 10:12 am

Antony wrote:Less than a month ago, [sdt=13042]I was being forced to upgrade[/sdt] to Firefox 2.0.0.2, and I have not seen that offensive dialogue as of now.


Antony,
I think that we went through the settings in Options|Advanced|Updates. There are two options, beside that of allowing the installation. One is to check, and you will get a notice, but no installation. The other is to uncheck everything, like I have. The settings in 2.0.0.3 are the same as they were in 2.0.0.2. So, if you made the changes, you would not get the offensive installation. How are your settings?
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.3) Gecko/20070309 Firefox/2.0.0.3
A minority may be right, and a majority is always wrong
~ Henrik Ibsen
WinXP, SP3, 512 MB, SM2.9.1, FF12, TB12.0.1, IE8.0, Google Chrome18, Ghostwall , Avast 7.x, JRE1.7_04. Testing FF13b3
User avatar
Fulvio
Moderator
Moderator
 
Posts: 11915
Joined: Wed 19 Jun, 2002 10:08 am
Top

Postby Antony » Wed 21 Mar, 2007 10:38 am

Fulvio,

I made the change in settings.

Now, this dialogue looks less offensive. Of course, I clicked "Later".

Image

Although it says "It is strongly recommended that you upgrade Firefox ...", but I clicked "View more information about this update" (which is the release note). My judgement told me it is not that serious at all, no need to rush.
UserAgent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en-US; rv:1.8.1.2) Gecko/20070219 Firefox/2.0.0.2
User avatar
Antony
diamond member
diamond member
 
Posts: 14509
Joined: Tue 18 Jun, 2002 11:36 pm
Location: Sydney, Australia
Top

Postby Fulvio » Wed 21 Mar, 2007 11:56 am

Dumb, dumb, dumb. I think that I had posted earlier saying that I installed 2.0.0.3 in the default location, vacated by the uninstallation of 1.5.0.10. It worked well, and I still had 2.0.0.2 installed in another directory. So far, so good, until I decided to uninstall 2.0.0.2. I had renamed the shortcut to Firefox 2. On uninstalling, the renamed shortcut was not touched, but the not renamed shortcut for 2.0.0.3, although it pointed to another folder was gone.
It was not hard to go fishing for another shortcut, but, I guess we are not safe.
Otherwise 2.0.0.3 works fine.
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.3) Gecko/20070309 Firefox/2.0.0.3
A minority may be right, and a majority is always wrong
~ Henrik Ibsen
WinXP, SP3, 512 MB, SM2.9.1, FF12, TB12.0.1, IE8.0, Google Chrome18, Ghostwall , Avast 7.x, JRE1.7_04. Testing FF13b3
User avatar
Fulvio
Moderator
Moderator
 
Posts: 11915
Joined: Wed 19 Jun, 2002 10:08 am
Top

Postby Natashaj » Wed 21 Mar, 2007 6:08 pm

Just reading here I am supposed too uninstall firefox everytime there is a version change or is safe too go over the top . I take the dloads from the help section I assume it goes over the top
and does anyone know if the add on red cats green flavour works ok in new version
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.2) Gecko/20070219 Firefox/2.0.0.2
Natashaj
member
member
 
Posts: 32
Joined: Sat 25 Nov, 2006 7:58 am
Top

Postby J-M » Wed 21 Mar, 2007 6:15 pm

Ramona wrote:This is from the Mozilla Foundation Security Advisories:

Fixed in Firefox 2.0.0.3

MFSA 2007-11 FTP PASV port-scanning


This only security vulnerability has been assigned as Low Risk by French-based security company FrSIRT:

Name: Mozilla Firefox "nsFtpState::R_pasv()" (!!!) FTP PASV Response Port Scanning Vulnerability
Link: http://www.frsirt.com/english/advisories/2007/1034

Exclamation marks added by J-M

I.e. this is (1/4) type vulnerability, the highest severity being used by the vendor is High Risk (4/4).
From the advisory:

This issue is due to an error in the "nsFtpState::R_pasv()" [netwerk/protocol/ftp/src/nsFtpConnectionThread.cpp] function when processing FTP PASV responses, which could be exploited by remote attackers to perform a rudimentary port-scan of systems inside an internal network by tricking a user into connecting to a malicious web page hosted on a specially crafted FTP server.


Additionally, Mozilla Foundation states that the impact of this security vulnerability is Low as well.
UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.8.1.2) Gecko/20070219 Firefox/2.0.0.2
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top

Postby SSS » Wed 21 Mar, 2007 6:42 pm

Natashaj wrote:Just reading here I am supposed too uninstall firefox everytime there is a version change or is safe too go over the top

It's safe to go over the top. You can also upgrade from Firefox's Automatic Updates, which you can launch from Help -> Check for Updates. :)
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.3) Gecko/20070309 Firefox/2.0.0.3
SSS
silver member
silver member
 
Posts: 242
Joined: Fri 21 Mar, 2003 2:03 pm
Top

Postby J-M » Wed 21 Mar, 2007 6:45 pm

It appears that the Security Alerts & Announcements section of page http://www.mozilla.org/security/ has not been updated to include the information about the current release.
The Known Vulnerabilities page was updated, however.
UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.8.1.2) Gecko/20070219 Firefox/2.0.0.2
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top

Postby Ramona » Wed 21 Mar, 2007 9:55 pm

It'is listed on the Mozilla Foundation Security Advisories page.

Security Advisory MFSA 2007-11
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.3) Gecko/20070309 Firefox/2.0.0.3
User avatar
Ramona
Moderator
Moderator
 
Posts: 2376
Joined: Wed 19 Jun, 2002 3:50 pm
Location: Midwest USA
Top

Postby Edward » Sun 25 Mar, 2007 11:47 am

An online article regarding this, mentioned there was also an update to SeaMonkey as well. However, I have not seen this update.

Ed
UserAgent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.8.1.2) Gecko/20070221 SeaMonkey/1.1.1
SillyDog701 Moderator
debian 6 - iceape - iceweasel - icedove - seamonkey
User avatar
Edward
Moderator
Moderator
 
Posts: 3584
Joined: Sun 01 Dec, 2002 7:15 pm
Top

Postby SSS » Sun 25 Mar, 2007 12:26 pm

For some strange reason, I was just downgraded from Firefox 2.0.0.3 to 2.0.0.2 (it did it as soon as I opened Firefox). :shock: Very weird. Has anyone had this happen before?
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.2) Gecko/20070219 Firefox/2.0.0.2
SSS
silver member
silver member
 
Posts: 242
Joined: Fri 21 Mar, 2003 2:03 pm
Top
Previous
Post a reply

Return to Firefox, SeaMonkey and Netscape

Who is online

Registered users: Google [Bot]

Powered by phpBB © phpBB Group
Cheap Web Hosting

support SillyDog701
[SillyDog701 home] [Netscape] [download NS] [MozInfo701] [MacCentre701] [Feedback] [Search] [Sitemap]
All messages posted in this forum do not necessarily represent SillyDog701. This forum is operated by Antony Shen. All rights reserved. Copyright Notice. Privacy Statement.		 get FirefoxMade on a Mac