MozillaZine

Mozilla 1.7.1, Mozilla Firefox 0.9.2 and Mozilla Thunderbird 0.7.2 Released

Thursday July 8th, 2004

The Mozilla Foundation has just released a trio of new Mozilla releases to the fix the Windows shell: security vulnerbility reported earlier. Mozilla 1.7.1, Mozilla Firefox 0.9.2 and Mozilla Thunderbird 0.7.2 contain no new features other than a preference change that disables the shell: protocol handler. Users who have installed the ShellBlock 1.0 XPI patch in all their Mozilla applications do not need to upgrade. Visit the sample exploit page to see if you are at risk. More details and download links are available in the Mozilla Foundation's security bulletin about the shell: exploit.


#22 Re: Borken Patch

by wmhb1

Friday July 9th, 2004 9:43 AM

You are replying to this message

I'm new to Firefox and certainly no expert at this stuff ... had the same problem until I found a clue via a Google search -- just now went to Tools | Options | Advanced, and then found the area for Software Update and clicked on the box in front of "Allow websites to install software." May I suggest that this information could be part of the patch instruction/information to assist folks like me who are not experts? Thanks. B