News

Mozilla patches 10 Firefox 3.5 vulnerabilities

Mozilla patched 10 security vulnerabilities in Firefox 3.5, all but one ranked critical. It also delivered the first update that automatically checks for outdated versions of the popular Flash Player plug-in.

Wednesday's updates kicked off a new Mozilla plan to check for outdated plug-ins that are popular with both users and attackers. After Firefox is updated to 3.5.3 or 3.0.14, the new browser detects the Flash Player plug-in if it's present, then warns users if it's not the most up-to-date edition.

Mozilla wants to expand the plug-in check in Firefox 3.6, which is currently set to ship in November, to detect outdated versions of Apple's QuickTime; Adobe's Flash, Shockwave and Reader; Microsoft's Silverlight; and Sun's Java.

Firefox 3.5.3 and 3.0.14 can be downloaded for Windows, Mac OS X and Linux, but current users can also call up the browsers' updater tools, or wait for automatic update notifications to appear in the next 48 hours.