Firefox 3.0.6 update fixes crash, security flaws
updated 10:10 am EST, Thu February 5, 2009
Firefox 3.0.6 update
Mozilla has released Firefox 3.0.6, an update to its popular web browser. The company claims to have resolved several security issues, as well as stability problems which triggered crashes. Some security fixes include preventing people from changing a form input control's type during the restoration of a closed tab, which could be used in altering the input type to steal the content of a user’s local file. Also blocked is a Chrome XBL method that could be used with window.eval to execute JavaScript.
Other minor fixes have been made to prevent cookies marked HTTPOnly from being read by JavaScript via XMLHttpRequest, and an issue with Firefox ignoring certain HTTP directives that could have resulted in users viewing improperly cached pages containing private data. Lastly, a problem that was supposed to have been solved in the previous update, involving people using local Internet shortcut files to access other sites, turns out to have had a bypass method involving redirection to a privileged about:URL. Mozilla now claims to have closed the loophole.
Firefox 3.0.6 is a free download from the Mozilla website.
Fresh-Faced Recruit
Joined: May 2005
No it doesn't
It does not. I had problems for a long time, with prior version. If I just opened the browser on Google home page, and let it sit, it would crash within a minute.
Upgraded to 3.06.... it crashes in 3 minutes.