Firefox vulnerabilities patched

Mozilla has released a new version of the Firefox Web browser to patch critical vulnerabilities. Users are encouraged to upgrade from version 1.0.3 to 1.0.4 to protect their systems from the possible threats. The Firefox 1.0.4 Release Notes are simple:

What's New 1.0.4 Firefox 1.0.4 is a security update that is part of our ongoing program to provide a safe Internet experience for our customers. We recommend that all users upgrade to this latest version. Here's what's new in Firefox 1.0.4:

• Several security fixes.
• Fix to DHTML errors encountered at some web sites.

The security weaknesses, listed by Mozilla as MFSA 2005-44: Privilege escalation via non-DOM property overrides, MFSA 2005-43: "Wrapped" javascript: urls bypass security checks, and MFSA 2005-42: Code execution via javascript: IconURL, were deemed extremely critical, and proof of concept exploits had been making their way around the Internet. The patches for the flaw are out less than a week after security firm Secunia reported the issues. However, Firefox has had more reported security threats this year than Microsoft's Internet Explorer.