Firefox V.39 Security vulnerability blocking access to login FYI

Similar Messages

• F-secure queries Bonjour access on login

  I'm using a notebook PC with windows Vista and F-Secure internet security. Every time I log on F-secure checks that I want to allow Bonjour to access the internet (check box for 'don't ask me this again' doesn't register). I can add the trusted website to my settings, but I can't find out what it is. Does anyone know, please? Cheers

  The ports BonJour uses are listed in the following document:
  [Well known TCP and UDP ports used by Apple software products|http://support.apple.com/kb/TS1629]
  Are you able to create a rule for your BonJour Service using that port infomation?

• How do I access Firefox when Norton 360 firewall seems to be blocking access but all links on Norton 360 default to Mozilla page which can't connect?

  I'm writing this via a Windows Explorer browser window which should tell you the problem, or at least that I can't connect through Mozilla Firefox.
  Mozilla has been my default for years and I've always had Norton, 360 for the last few years. I've been through the traditional update problems with Toolbar/ID Safe and both of those are working fine.
  Both were updated to absolute latest version within the last week due to an Update/Restart problem I was having with Windows 8.
  There were some periodic problems with initializing the Norton problems which generally led to a Firefox not responding situation.
  But I was able to run both quick and complete scans yesterdays and the Norton Autofix tells me no problems with their program/app.
  I just downloaded newest Mozilla 25.0.1 last night again as last resort because I can't access Firefox beyond the homepage.
  Spotify also told me there appeared to be a firewall blocking access. I also can't access iTunes.
  I went to Windows 8 Action Center and it listed Norton 360 as controlling the firewall.
  But I went to the allow apps through Windows Firewall tab in System anyway and didn't see any listing for Mozilla or Firefox there (maybe you have a less obvious filename).
  My own network connection is working fine, obviously I'm on Explorer and no problems with my other computer.
  I'm going to contact Norton to deal with this problem, too.
  But my real problem now is that any attempt to contact the Symantec/Norton help/support site is automatically sent through a Firefox page which can't connect.
  Right now I can't figure out how to do a tech chat or something to work at it from their end.
  So that's why I'm here asking if you've run into this or know any way around it.
  Obviously, the quicker a response the better.
  Thanks for your time.
  Ciao 4 now,
  Don Snowden

  Hello J Scher,
  I don't know if this answer solves it, but I did contact Norton Support through IE and the tech had me download Firefox again...just like I did the night before on my own. But for the moment, for whatever reason, all those issues have gone away, knock on wood three million times. I can access Norton support pages, I can get on Spotify and I can reach the iTunes store.
  I will freely admit to not being a great computer person but I have no idea why my machine did this to me all weekend and why it cleared up now, unless the Norton tech did some behind-the-scenes tweakery. But for now, I'm okay and things are working, knock on wood four million more times (figure I better up the ante).
  Thanks for your help.
  Don Snowden

• We use an add-on in one of our online solutions and we've identified a security vulnerability. The issue has been addressed in our latest add-ons and we would like to know how we may blocklist our previous player through a firefox update?

  We use an add-on in one of our online solutions and we've identified a security vulnerability. The issue has been addressed in our latest add-ons and we would like to know how we may blocklist our previous player through a firefox update?

  You can file a bug report to do that request.
  http://developer.mozilla.org/en/docs/Bug_writing_guidelines

• I'm about to quit Firefox if I can't get it to stop blocking access to the Options Chain on TD Ameritrade. Bill Epmeier

  Every time I try to access the page, I get a notice thqt Firefox is blocking access.

  Do you have that problem when running in the Firefox SafeMode? <br />
  [http://support.mozilla.com/en-US/kb/Safe+Mode] <br />
  ''Don't select anything right now, just use "Continue in SafeMode."''
  If not, see this: <br />
  [http://support.mozilla.com/en-US/kb/troubleshooting+extensions+and+themes]

• Why does firefox keep blocking access to social websites like facebook etc????

  any time i try to go on any social website i get this msg :
  Web Page Blocked
  Access to the web page you were trying to visit has been blocked in accordance with company policy. Please contact your system administrator if you believe this is in error.
  User: 10.150.46.8
  URL: www.taggedmail.com/new_invites.html?ect=by6lqzxg_fid=663B91D2D7B5A27B_al=sRaB9KH0z_md.1je2Y4.52mvph_tn=bWVzc2FnZXNfbmV3LTEtMy0xLTc=_linkId=new_invites_link_2
  Category: social-networking
  Click here to login
  this msg happens with any social network i go on so why is this happening????????????

  thats not true becuz this didnt start happening til i downloaded firefox becuz when i was using internet explorer i didnt have one problem but then i download firefox and i get blocked msgs

• 'Outlook web has blocked access to attachments'; how do I unblock it?

  Outlook web has blocked access to attachments; how do I unblock it?
  == This happened ==
  Not sure how often

  Hello Sally.
  First of all, and although possibly not related to your problem, I will remind you that the version of Firefox you are using at the moment as been discontinued and is no longer supported. Furthermore, it has known bugs and security problems. I urge you to update to the latest version of Firefox, for maximum stability, performance, security and usability. You can get it for free, as always, at [http://www.getfirefox.com www.getfirefox.com].
  As for your problem, you may be having a problem with some extension or plugin that is hindering your Firefox's normal behavior. Have you tried disabling all add-ons (just to check), to see if Firefox goes back to normal?

• "the firefox application is not allowed to access the graphics hardware"

  I would like to ask for help the following phenomenon:
  "the firefox application is not allowed to access the graphics hardware"
  This error message appears, at times, and then restart the browser once in a while it's all good.Do not use any accessory.Operating system: Win 8.1 64 bit Oh, even so much that the virus and malware search engine does not find anything.
  Any idea?Thank you very much.

  Strange, I mostly found this error happening for game software: http://www.tomshardware.com/answers/id-1877769/error-program-blocked-accessing-graphics-hardware-update.html
  In 8.1 there is a way to block applications from using the graphics hardware acceleration. Opening up the device manager [http://pcsupport.about.com/od/windows-8/a/device-manager-windows-8.htm]

• Blobs, REST, Firefox and Silverlight = Security Error

  Hello,
  I'm trying to access Azure Storage blobs (via SAS string) from a Silverlight application. A clientaccesspolicy.xml is present in the $root blob container, allowing Silverlight access.
  I've created a sample Silverlight application with just one button. The button executes the following code:
              var request = (HttpWebRequest)WebRequestCreator.ClientHttp.Create(new Uri("http://[mystoragename].blob.core.windows.net/[mycontainername]/[myfilename]?[sasString]"));
              request.Method = "GET";
              request.BeginGetResponse(r =>
                  try
                      var response = request.EndGetResponse(r);
                      using (var s = response.GetResponseStream())
                          this.Dispatcher.BeginInvoke(() => MessageBox.Show(s.Length.ToString()));
                  catch(Exception ex)
                      this.Dispatcher.BeginInvoke(() => MessageBox.Show(ex.Message));
              }, null);
  Running this code on IE produces the expected result - the size of a blob uploaded to Azure Storage. Unfortunately, the same application, when ran in Firefox, produces a "Security Error" with no further indication of what might be wrong.
  What could be the issue? Where should I even begin looking for one?
  EDIT:
  The same issue occurs in Chrome.
  EDIT 2:
  The SAME issue occurs when I try to download a file from a PUBLIC blob container (same code as above, only different URL). The public blob container also has it's own clientaccesspolicy and crossdomain XML files. Again - the code works in IE, but fails to function
  in Firefox / Chrome.

  I found a valid workaround.
  I've created an ASHX handler on the web site which is hosting the Silverlight application. This handler basically "redirects" a HttpWebRequest to Azure Storage.
              var url = String.Format("http://{0}.blob.core.windows.net/{1}/{2}{3}", accountName, containerName, blobName, sas);
              var request = (HttpWebRequest)WebRequest.Create(url);
              try
                  var response = request.GetResponse();
                  context.Response.ContentType = response.ContentType;
                  using (var stream = response.GetResponseStream())
                      stream.CopyTo(context.Response.OutputStream);
              catch
                  context.Response.End();
  Where the parameters used in building the url are passed as query string parameters to the ASHX handler. While not ideal (an ideal solution would be connecting from SL directly to Azure Storage), this works fast enough and doesn't seem to use much resources.

• Inability of FireFox to verify security certificates.

  The warning below shows up consistently on every attempt to access the web, whether directly or by link such as in an e-mail: This includes sites regularly accessed including Google and Mozilla.
  This Connection is Untrusted
  You have asked Firefox to connect
  securely to support.mozilla.org, but we can't confirm that your connection is secure.
  Normally, when you try to connect securely,
  sites will present trusted identification to prove that you are
  going to the right place. However, this site's identity can't be verified.
  What Should I Do?
  If you usually connect to
  this site without problems, this error could mean that someone is
  trying to impersonate the site, and you shouldn't continue.

  Please Update to the latest Firefox 19.0.x version.
  *Help > About Firefox
  *https://support.mozilla.org/kb/update-firefox-latest-version
  *https://support.mozilla.com/kb/Updating+Firefox
  The Firefox 4 version that you currently run is no longer supported with security updates
  Check the date and time in the clock on your computer: (double) click the clock icon on the Windows Taskbar.
  *https://support.mozilla.org/kb/Secure+Connection+Failed
  Check out why the site is untrusted (see the Technical details).
  Some firewalls monitor secure (https) connections and send their own certificate instead of the website's certificate.
  You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.
  *Click the link at the bottom of the error page: "I Understand the Risks"
  Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".
  *Click the "View..." button and inspect the certificate and check who is the issuer.
  You can see more Details like intermediate certificates that are used in the Details pane.

• Firefox has suddenly started to block my gmail account. Why?

  I have been using my gmail account with no problem. Then suddenly I am unable to access gmail. A yellow warning denies access. It says the Google Connection is Untrusted. I have copied and pasted the warning below:
  You have asked Firefox to connect
  securely to mail.google.com, but we can't confirm that your connection is secure.
  Normally, when you try to connect securely,
  sites will present trusted identification to prove that you are
  going to the right place. However, this site's identity can't be verified.
  What Should I Do?
  If you usually connect to
  this site without problems, this error could mean that someone is
  trying to impersonate the site, and you shouldn't continue.
  OK. WHAT IS THE PROBLEM?

  Did you activate Restrictions in Settings > General > Restrictions > Websites?

• Block access to disk on guest network?

  Is it possible to block access to the disk through the guest network?
  I have a hard disk connected to the USB port of an AEBS so I can access it through the secure primary network.
  However, it seems that also those connected through the guest network can see and read the disk.
  Is there a way to block the disk from the guest network?

  Yes goto disk / file sharing / disk access guest network. and turn off access.

• HT202802 What "security vulnerability" will be opened by using this signing technique?

  Regarding article: HT202802
  OS X: Using AppleScript with Accessibility and Security features in Mavericks - Apple Support
  The article says:
  Important: Signing an applet using the following method introduces a security vulnerability that could allow malicious software to use Accessibility without user permission.
  1. What "security vulnerability" will be opened by using this signing technique?
  2. Does signing this way only make the App its applied to vulnerable only? and then the whole computer vulnerable depending on how extensive the app's reach is to the rest of the computer?
  3. More information: My app only relates to the Reminders app and bunch of Finder items....nothing internet based, etc.  That being said, is this still a vulnerability to my computer?
  "Note: If you have your own signing identity, you may use that identity in place of “-” for the -s option." 
  1. What is "my own signing identity?" and if I don't have one, would it add security to get one and use it here?
  Thanks for the help in advance!

  1) There are a few system features, including accessibility, that will override any and all other security protections on you machine. This is the vulnerability. In giving the script the ability to control your machine, you give control of your machine to the script.
  2) By signing the script, that control is permanent. If the app doesn't do anything malicious, there is no problem. But malicious apps sometimes don't manifest until later.
  3) Did you write the app? If so, then there is nothing to worry about. If not, then how much do you trust the author of the app?
  Generally, this isn't too big a deal. Apple is very protective, but most people generally hand over their passwords to anyone. They shouldn't, of course, but generally they do. They don't realize the extent to which they have handed over control of their machine and all of their data. Apple is trying to point that out.

• FTP security vulnerability or what ?

  I have tested the FTP settings on my DL2100 and allowed access for only 2 users X and Y. I have disabled Anonymous user on the FTP folder.When i looked at my logs, i saw that Anonymous has been logging in and out a few times a day.  I said that impossbile since this user is  not allowed.I logged on to the FTP with Anonymous myself, to my surprise and see only the ROOT folder, but indeed no FTP shares. I couldn't navigate anywhere with this user, BUT is this the way WD intended to secure FTP connections ? Shouldn't  the connection for Anonymous be denied from the beggining ?

  adicrst wrote:
  Reply from WD Support Thank you for contacting Western Digital Customer Service and Support. My name is X.
  I am sorry to read that you have an issue with the FTP. Our apologies for the inconvenience that this may have caused you.
  Concerning the question you have about the Anonymous in FTP, I can inform you that when you created shares w which are accessible through FTP and you selected for the Anonymous as None, it is counted always for the share which Anonymous is not allowed to access and not for the root directory. That is why you can see the root directory, but not the specific shares.
  I hope that I provided you the information you need and that you are satisfied with the answer.
  If you have any further questions, please reply to this email and we will be happy to assist you further. So in other words we should just live with this security vulnerability, even if everyone has a solid confirmation that your FTP is available on the internet and everyone can log just for the fun of it with Anonymous user.What if i allow only 1 FTP connection and a hacker is holding it busy with  Anonymous session ? Like the support guy state, when you enable FTP on a folder, remember to select, when I state select mean click the down arrow and select "Anonymous None" then click save.  That is how I know it will save the setting.  If you don't select, the device will think you want to set your FTP server for everyone to log in "including annonymous."

• Outlook blocked access to the following potentially unsafe attachments

  Dear Support,
  I have an issue with attachment with Outlook. It is showing "Outlook blocked access to the following potentially unsafe attachments". I can't download,view the attachments with the mail.
  The scenario is, I was on Outlook 2010 and upgraded to Outlook 2013 and the mails before a particular date has this attachment issue. I mean if I get mail today, there is no issues. I can download,view etc. I tried most of the registry entries like Level1,
  etc but not solving at all. I have copied some emails from that to pst and tried on another PC, it was not working..
  Please help me to fix this because the attachments are very important to us
  Thanks

  Hi,
  Which type of email account are you using? Do you leave copies of your emails on the server? If so, we may first check if you can view or download the attachments from web access.
  Does this issue happen to all types of email attachments received before a particular date? Please note that Outlook blocks some file types by default, you may check the list in the following link:
  https://support.office.com/en-us/article/Blocked-attachments-in-Outlook-3811cddc-17c3-4279-a30c-060ba0207372
  In addition, by "I tried most of the registry entries like Level1", do you mean that you tried adding the following registry but still not fix the issue?
  HKEY_CURRENT_USER\Software\Microsoft\Office\15.0\Outlook\Security
  String Value: Level1Remove
  Value: Type the file name extension of the file type that you want to open in Outlook. For example:
  .exe.
  If still no luck, we may also try other methods listed in the following article:
  https://support.microsoft.com/kb/829982?wa=wsignin1.0
  Please let me know the result.
  Regards,
  Steve Fan
  TechNet Community Support
  It's recommended to download and install
  Configuration Analyzer Tool (OffCAT), which is developed by Microsoft Support teams. Once the tool is installed, you can run it at any time to scan for hundreds of known issues in Office
  programs.