The Mozilla Foundation has just released a trio of new Mozilla releases to the fix the Windows shell: security vulnerbility.

Mozilla 1.7.1, Mozilla Firefox 0.9.2 and Mozilla Thunderbird 0.7.2 contain no new features other than a preference change that disables the shell: protocol handler. Users who have installed the ShellBlock 1.0 XPI patch in all their Mozilla applications do not need to upgrade. Visit the sample exploit page to see if you are at risk.

Download: Mozilla 1.7.1 | Firefox 0.9.2 | Thunderbird 0.7.2

View: shell: exploit security bulletin

mozillaZine