Mozilla Firefox Add-ons Blocklist

Baru saja saya mendapat notifikasi secara otomatis dari browser favourite Mozilla Firefox, yang memberitahukan bahwa ada salah satu plugins yang bisa menyebabkan kerentanan pada browser ini.

Dan plugins tersebut ternyata adalah Java Deployment Toolkit 6.0.140.8. Menurut notifikasi yang saya dapatkan bahwa plugins ini mempunyai resiko tinggi pada keamanan browser firefox.

Berikut kutipan keterangan beberapa addons yang dimasukan pada daftar blocklist yang saya kutip dari https://www.mozilla.com/en-US/blocklist/

This page lists blocklisted add-ons that should no longer be used with Mozilla products.

-Internet Download Manager, v2.1-3.3 for Firefox 3.0a1 and newer. Reason: caused startup crashes (see bug 382356).

- Free Download Manager, v1.0-1.3.1 for Firefox 3.0a1 and newer. Reason: high crash volume (see bug 408445).

- Yahoo Application State Plugin, v1.0.0.5 and older for Firefox 3.0a1 and newer. Reason: high crash volume (see bug 419127).

- Vietnamese Language Pack, v2.0 for all applications. Reason: corrupted files (see bug 432406).

- Apple QuickTime Plugin, v7.1.*, for all Firefox 3 versions on Windows. Reason: remote code execution in multiple versions (see bug 430826).

- Crawler Toolbar, for Firefox 3.0a1 and newer. Reason: high crash volume (see bug 441649).

- Daemon Tools Toolbar, versions older than 1.0.0.5, for all applications. Reason: high crash volume (see bug 459850).

- AVG SafeSearch, versions older than 8.5, for all applications. Reason: high crash volume and stability issues (see bug 527135).

- Skype extension, versions older than 3.3.0.3971, for all versions of Firefox. Reason: high crash volume and other stability issues (see bug 448768). Users should update Skype.

- Enigmail, versions older than 0.97a, for Thunderbird 3.0pre and newer. Reason: high crash volume and other stability issues (see bug 531047). Users should update Enigmail.

- YSlow, version 2.0.5, for Firefox 3.5.7 and newer. Reason: high crash volume and other stability issues (see bug 542686). Users should update to YSlow 2.0.6.

- Viewpoint Media Player, all versions, for Firefox 3.0 and newer. Reason: vendor claims incompatibility with 3.0+, high crash volume and other stability issues (see bug 539282). For more information, visit the vendor page.

- Java Deployment Toolkit, versions 6.0.200.0 and older. Reason: security vulnerabilities (see bug 558584).


Dan berikut screenshoot notifikasi yang secara otomatis muncul pada browser Firefox 3.6.3 saya.





Nah bagi anda yang tidak menerima notifikasi tersebut, ada baiknya anda menon-aktifkan beberapa addons anda yang masuk pada daftar blocklist yang dikeluarkan pihak mozilla.
Java Deployment Toolkit, versions 6.0.200.0 problem, Add-ons Blocklist on Firefox

0 comments:

Post a Comment

Hide Sidebar
Show Sidebar