Firefox 3.6.2 to be released March 30
In the past month, there has been lots of discussions involving an unpatched security vulnerability in Firefox 3.6. Unfortunately, there was very limited information released on the vulnerability and much of the discussions revolved around if the reports were real or just FUD. Mozilla eventually received enough information where they could reproduce the problem and posted an advisory late on 3/18/2010 (yes I know that I missed this being released yesterday, and I blame the NCAA tourney for that).
In any case, Firefox 3.6.2 is scheduled for release on March 30, but the beta build is available from their nightly candidate area. More information is located at Mozilla Security Blog. Please schedule some time to test this version and get this into your update pipeline for user workstations.
UPDATE Mar 23 2010 05:00:00: Well, Firefox 3.6.2 has been released early. The release notes are available at http://www.mozilla.com/en-US/firefox/3.6.2/releasenotes/ . For those that have distinct testing plans for your workstations, you have the opportunity to engage these plans earlier than expected this week. Happy patching and testing everyone.
Scott Fendley ISC Handler
BitDefender 2010 Update Problem
We have started to receive reports this morning concerning a popular consumer antivirus product has caused some grief today. BitDefender 2010 appears to have released a set of bad definitions. Unfortunately, these bad virus definitions appear to detect core DLL files and even parts of BitDefender, itself, as infected by "Trojan.FakeAlert.5". There is quite a thread discussing this issue on the BitDefender Forums.
If you or your organization uses BitDefender, I would heavily recommend that you disable auto-update of the definitions until corrected ones are released soon. Also, I would recommend preparing to do a lot of hands-on clean up to reverse those files which were quarantined by accident.
Update: BitDefender has been sharing more information about this incident involving 64-bit architecture via their twitter account. They point users to their knowledge base for more details on how to recover from this problem. I hope that beyond the initial response of this major issue, BitDefender and all antivirus vendors will recheck how they test, do quality assurance, and prepare to use social media as a communication tool for their customers in the case of an emergency.
Scott Fendley ISC Handler
Comments
www
Nov 17th 2022
6 months ago
EEW
Nov 17th 2022
6 months ago
qwq
Nov 17th 2022
6 months ago
mashood
Nov 17th 2022
6 months ago
isc.sans.edu
Nov 23rd 2022
6 months ago
isc.sans.edu
Nov 23rd 2022
6 months ago
isc.sans.edu
Dec 3rd 2022
5 months ago
isc.sans.edu
Dec 3rd 2022
5 months ago
<a hreaf="https://technolytical.com/">the social network</a> is described as follows because they respect your privacy and keep your data secure. The social networks are not interested in collecting data about you. They don't care about what you're doing, or what you like. They don't want to know who you talk to, or where you go.
<a hreaf="https://technolytical.com/">the social network</a> is not interested in collecting data about you. They don't care about what you're doing, or what you like. They don't want to know who you talk to, or where you go. The social networks only collect the minimum amount of information required for the service that they provide. Your personal information is kept private, and is never shared with other companies without your permission
isc.sans.edu
Dec 26th 2022
5 months ago
isc.sans.edu
Dec 26th 2022
5 months ago