Mozilla Ships Security Goodies in Firefox 3.6 Update

Mozilla
has released the latest iteration of its flagship Firefox browser with
a few significant security goodies to keep malicious hacker at bay. The update, which is being shipped via the browser’s automatic
update mechanism, includes new features to patch third-party Firefox
plug-ins and lock out rogue add-ons.

Mozilla
has released the latest iteration of its flagship Firefox browser with
a few significant security goodies to keep malicious hacker at bay. The update, which is being shipped via the browser’s automatic
update mechanism, includes new features to patch third-party Firefox
plug-ins and lock out rogue add-ons.

There are no security vulnerabilities being fixed with this Firefox 3.6 update.

Building on the browser’s ability to check for updates to Adobe Flash Player,
Mozilla has now fitted a plug-in checker that scans the machine for
insecure plug-ins that are installed.  If an outdated plug-in is found,
the browser will now prompt the user to apply the patch via a one-click
interface.

Firefox users should keep in mind that plug-ins are different from
add-ons or extensions.  Many software products add plug-ins to Firefox
without the user’s knowledge or consent and these are rarely patched by
the end-user.

Here is a link to the Firefox Plug-in Checker.

The second major security improvement in Firefox 3.6 is a behind-the-scenes tweak to lock out rogue Firefox add-ons. 
The feature is called Component Directory Lockdown, blocks browser
add-ons from loading in the browser’s application components directory,
a move that effectivly stops developers and software vendors from silently installing Firefox add-ons without explicit user permission.

It will also significantly reduce browser crashes linked to third-party add-ons, Mozilla said.

Suggested articles

Discussion

  • ifyouaskme on

    3.6? Why would I want Mozilla to be able to scan my computer without my knowledge??? Downloaded 3.5 last week...it's not faster and opening/downloading email attachments is either so cumbersome no-one in my house can figure it out or downloading is just not possible/permissable. IE is more intuitive and sooooo much easier to use. Also IE is not cluttered with so much unwanted stuff.

  • Anonymous on

    Another reason to switch from Innternet Explorer!

    "IE is more intuitive and sooooo much easier to use." You mean easier for hackers!! ;)

  • GiddyUoGo on

    I just upgraded to Firefox v3.6 yesterday. Today I went back to v3.5.7. My mouse is a Logitech 1000 with the latest XP updates. I use windows xp pro, sp3. Firefox v3.6 will not let me use the Logitech cruse up/down or page up/down functions. I refuse to give up these functions of my mouse. Anyone know how to get this to work?

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.