Categories: Security

Firefox Had More Bugs Than IE and Safari Combined

Nearly twice as many security vulnerabilities were found in the Firefox browser compared to IE and Apple Safari combined, according to new research.

Firefox had 115 security vulnerabilities reported in 2008, according to browser vulnerability research released by Secunia late last week.

However, the news is not all bad, as the same report showed that Mozilla was much quicker to respond than Microsoft when flaws were publicly disclosed either prior to or without vendor notification.

Three Firefox vulnerabilities were publicised last year under those conditions. All three were patched, with the longest patch taking 86 days to arrive, according to Secunia. For IE, however, only three of the six such vulnerabilities were patched as of 31 December. One of the IE vulnerabilities remained open for 294 days in 2008, according to the report.

The report noted that not all vulnerabilities are created equal. The three aforementioned Firefox flaws were rated “less critical,” while the Microsoft vulnerabilities were more of a mixed bag. The three unpatched IE flaws were rated either “not critical” or “less critical.” Two of the patched bugs were classified as “moderate” and “high,” while the third patched bug was considered “less critical.”

On 4 March, Mozilla released an update plugging eight security holes in Firefox 3.07, of which six were rated critical. The vulnerabilities affect the browser’s garbage collection, PNG libraries, layout and JavaScript engines.

The critical vulnerabilities could enable hackers to run arbitrary code. But there is also a vulnerability rated “high” that could allow a Web site to use nsIRDFService and a cross-domain redirect to steal private data from users authenticated to the redirected Web site.

The update came a day after Opera Software issued a security update for its browser, and roughly a week after Apple released a beta version of Safari 4.

Brian Prince eWEEK USA 2014. Ziff Davis Enterprise Inc. All Rights Reserved

Recent Posts

Apple, Google Mobile Ecosystems Should Be Investigated, CMA Told

CMA receives 'provisional recommendation' from independent inquiry that Apple,Google mobile ecosystem needs investigation

5 hours ago

Australia Rejects Elon Musk Claim About Social Media Ban For Under-16s

Government minister flatly rejects Elon Musk's “unsurprising” allegation that Australian government seeks control of Internet…

8 hours ago

Northvolt Files For Bankruptcy Protection In US

Northvolt files for Chapter 11 bankruptcy protection in the United States, and CEO and co-founder…

9 hours ago

UK’s CMA Readies Cloud Sector “Behavioural” Remedies – Report

Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector

1 day ago

Former Policy Boss At X, Nick Pickles, Joins Sam Altman Venture

Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…

1 day ago

Bitcoin Rises Above $96,000 Amid Trump Optimism

Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…

1 day ago