Tools: Metasploit inside a word file – ithaven.blogspot.com Vulnerabilities: FFSpy – Firefox Malware PoC Debian OpenSSH 4.7 encryption flawed Flaw in encryption armor discovered – cnet.com Chink in encryption armor discovered – zdnet.com ntpd autokey stack buffer overflow – cert.org Other News: Adobe patch Tuesday approach Adobe Adopts Microsoft’s Patch Tuesday Approach – washingtonpost.com Adobe [...]

Just two weeks ago, Mozilla released a security update for their Firefox web browser, and today they are releasing another security update to fix 3 security vulnerabilities. All of the vulnerabilities were marked critical. MFSA 2008-36 – Crash with malformed GIF file on Mac OS X MFSA 2008-35 – Command-line URLs launch multiple tabs when [...]

Mozilla released yesterday an update to the 2.0.0.x version of Firefox, fixing 12 security bugs. The Firefox 2.0.0.15 release fixed 12 security vulnerabilities, 4 of which were rated critical. So for those that are not using the recently released Firefox 3.0, I would suggest upgrading now to Firefox 2.0.0.15.