Author Topic: Firefox users (Windows) - Reported vulnerability  (Read 476 times)

0 Members and 1 Guest are viewing this topic.

Offline everydayupsanddowns

  • Administrator
  • Posts: 2,325
    • Every day ups and downs - a diabetes blog
Firefox users (Windows) - Reported vulnerability
« on: 30 November 2016, 11:18:05 AM »
Hi all

Just in case anyone here uses Firefox for Windows, I've just been alerted to a potential security vulnerability which could be used to attack and infect your computer simply by visiting a corrupted website.

The alert came via Wordfence today and I have no reason to doubt it, though I've not seen it reported elsewhere yet.

Might be worth switching to an alternative browser until FF gets an update?

https://www.wordfence.com/blog/2016/11/emergency-bulletin-firefox-0-day-wild/
Mike

Type 1 since: 1991 Last HBA1c: 45 (6.3%)  Total Chol 5.0 (1.9HDL / 2.8LDL / Trigs 0.7)
Pumping NovoRapid in a MiniMed 640G
Blogging at: www.everydayupsanddowns.co.uk

Offline Liam

  • Global Moderator
  • Posts: 3,034
  • We live to fight another day.
Re: Firefox users (Windows) - Reported vulnerability
« Reply #1 on: 30 November 2016, 02:06:33 PM »
There was an update for FF just today. Not sure if it is a patch for this or not.Just looked and it is only a 50.0.1 update, you'll know better than me but the smaller the number the less significant an update right?
DX Type I 1994.    Novorapid Animas Vibe pump
HbA1c 3/10 10.2%, 7/10 8.1%, 12/10 7.5%.
2/11 7.8%, 8/11 8.6% 9/11 8.3%.
3/12 62 (7.8%). 10/12 67 (8.3%)
4/13 63 (7.9%) 6/13 59 (7.5%)
1/14 71 (8.6%) 7/14 59 (7.5%) 11/14 (6.7%)
3/15 56 (7.3%) 12/15 49 (6.6%)
Ramipril: 10mg Quetiapine: 550mg Metformin: 2000mg

Offline Liam

  • Global Moderator
  • Posts: 3,034
  • We live to fight another day.
Re: Firefox users (Windows) - Reported vulnerability
« Reply #2 on: 30 November 2016, 02:32:00 PM »
Anyway I've switched to Chrome for now. In the comments from the link you posted they say the update today wasn't about this.
DX Type I 1994.    Novorapid Animas Vibe pump
HbA1c 3/10 10.2%, 7/10 8.1%, 12/10 7.5%.
2/11 7.8%, 8/11 8.6% 9/11 8.3%.
3/12 62 (7.8%). 10/12 67 (8.3%)
4/13 63 (7.9%) 6/13 59 (7.5%)
1/14 71 (8.6%) 7/14 59 (7.5%) 11/14 (6.7%)
3/15 56 (7.3%) 12/15 49 (6.6%)
Ramipril: 10mg Quetiapine: 550mg Metformin: 2000mg

Offline Pattidevans

  • Administrator
  • Posts: 23,668
  • It's ONLY Diabetes. It could be something worse!
Re: Firefox users (Windows) - Reported vulnerability
« Reply #3 on: 30 November 2016, 02:50:14 PM »
The update to 50.0.1 was released on 28 November to address a security issue, but I am unsure if it is the security issue reported here.
Patti


Type 1.  Mis-diagnosed T2 May 2003, finally had CPeptide test 15/7/11 and proper diagnosis 1/9/11.  Now pumping Apidra with Roche Spirit Combo pump. Hba1c 6.1 April 2016.


© 2015 Patti Evans

Offline everydayupsanddowns

  • Administrator
  • Posts: 2,325
    • Every day ups and downs - a diabetes blog
Re: Firefox users (Windows) - Reported vulnerability
« Reply #4 on: 30 November 2016, 04:14:55 PM »
No I think that was an earlier one then - at least that's the impression I get.
Mike

Type 1 since: 1991 Last HBA1c: 45 (6.3%)  Total Chol 5.0 (1.9HDL / 2.8LDL / Trigs 0.7)
Pumping NovoRapid in a MiniMed 640G
Blogging at: www.everydayupsanddowns.co.uk

Offline Liam

  • Global Moderator
  • Posts: 3,034
  • We live to fight another day.
Re: Firefox users (Windows) - Reported vulnerability
« Reply #5 on: 30 November 2016, 05:15:51 PM »
The guy in the comments saying it wasn't for this seemed to know what he was talking about. Would be pretty fast for the patch to be ready now right?
DX Type I 1994.    Novorapid Animas Vibe pump
HbA1c 3/10 10.2%, 7/10 8.1%, 12/10 7.5%.
2/11 7.8%, 8/11 8.6% 9/11 8.3%.
3/12 62 (7.8%). 10/12 67 (8.3%)
4/13 63 (7.9%) 6/13 59 (7.5%)
1/14 71 (8.6%) 7/14 59 (7.5%) 11/14 (6.7%)
3/15 56 (7.3%) 12/15 49 (6.6%)
Ramipril: 10mg Quetiapine: 550mg Metformin: 2000mg

Offline everydayupsanddowns

  • Administrator
  • Posts: 2,325
    • Every day ups and downs - a diabetes blog
Re: Firefox users (Windows) - Reported vulnerability
« Reply #6 on: 01 December 2016, 08:14:59 AM »
Liam - I know they were working on it straight away as soon as they became aware of the risk.

An update (50.0.2) was released yesterday which fixes this vulnerability. FF users are encouraged to upgrade as soon as possible.
Mike

Type 1 since: 1991 Last HBA1c: 45 (6.3%)  Total Chol 5.0 (1.9HDL / 2.8LDL / Trigs 0.7)
Pumping NovoRapid in a MiniMed 640G
Blogging at: www.everydayupsanddowns.co.uk

Offline Pattidevans

  • Administrator
  • Posts: 23,668
  • It's ONLY Diabetes. It could be something worse!
Re: Firefox users (Windows) - Reported vulnerability
« Reply #7 on: 01 December 2016, 01:37:40 PM »
Thanks Mike... i will ensure I update FF ASAP.  Used Chrome yesterday and I don't really like it. 
Patti


Type 1.  Mis-diagnosed T2 May 2003, finally had CPeptide test 15/7/11 and proper diagnosis 1/9/11.  Now pumping Apidra with Roche Spirit Combo pump. Hba1c 6.1 April 2016.


© 2015 Patti Evans

Offline Liam

  • Global Moderator
  • Posts: 3,034
  • We live to fight another day.
Re: Firefox users (Windows) - Reported vulnerability
« Reply #8 on: 01 December 2016, 02:40:09 PM »
Thanks for the news on the fix being out Mike. I'm going back to FF myself, just like how it renders fonts better and a couple other little things.
DX Type I 1994.    Novorapid Animas Vibe pump
HbA1c 3/10 10.2%, 7/10 8.1%, 12/10 7.5%.
2/11 7.8%, 8/11 8.6% 9/11 8.3%.
3/12 62 (7.8%). 10/12 67 (8.3%)
4/13 63 (7.9%) 6/13 59 (7.5%)
1/14 71 (8.6%) 7/14 59 (7.5%) 11/14 (6.7%)
3/15 56 (7.3%) 12/15 49 (6.6%)
Ramipril: 10mg Quetiapine: 550mg Metformin: 2000mg

Offline Pattidevans

  • Administrator
  • Posts: 23,668
  • It's ONLY Diabetes. It could be something worse!
Re: Firefox users (Windows) - Reported vulnerability
« Reply #9 on: 02 December 2016, 09:07:50 AM »
I think we all get used to one thing don't we?  I've been using Firefox for a long time now and have it personalised so that all my favourite places are easy to access from the tool bar.  So when using anything else I have to stop and think, rather than getting on with what I want to do.  Having said that, I am currently using Safari on my iPad... but again, I am used to how it works, whereas chrome is a foreign country!
Patti


Type 1.  Mis-diagnosed T2 May 2003, finally had CPeptide test 15/7/11 and proper diagnosis 1/9/11.  Now pumping Apidra with Roche Spirit Combo pump. Hba1c 6.1 April 2016.


© 2015 Patti Evans

Offline Liam

  • Global Moderator
  • Posts: 3,034
  • We live to fight another day.
Re: Firefox users (Windows) - Reported vulnerability
« Reply #10 on: 02 December 2016, 12:46:10 PM »
Well I have loads of sites sizes changed too. Crlt + 1 on firefox so that most sites look wrong on anything else. It is loads of little things but yeah I'm glad to be back on Firefox.
DX Type I 1994.    Novorapid Animas Vibe pump
HbA1c 3/10 10.2%, 7/10 8.1%, 12/10 7.5%.
2/11 7.8%, 8/11 8.6% 9/11 8.3%.
3/12 62 (7.8%). 10/12 67 (8.3%)
4/13 63 (7.9%) 6/13 59 (7.5%)
1/14 71 (8.6%) 7/14 59 (7.5%) 11/14 (6.7%)
3/15 56 (7.3%) 12/15 49 (6.6%)
Ramipril: 10mg Quetiapine: 550mg Metformin: 2000mg