Echo

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 50.1 Firefox ESR versions prior to 45.6 Thunderbird versions prior to 45.6 **Description** The issue arises from a use-after-free error when handling DOM events and removing audio elements, specifically due to incorrect node adoption. This can lead to potential exploitation. **Recommendations** For Firefox versions prior to 50.1, update to version 50.1 or later. For Firefox ESR versions prior to 45.6, update to version 45.6 or later. For Thunderbird versions prior to 45.6, update to version 45.6 or later.

**Name of the Vulnerable Software and Affected Versions** Opera version 11.11 **Description** The issue allows remote attackers to cause a denial of service, resulting in an application crash. This can be achieved by setting the FACE attribute of a FONT element within an IFRAME element after changing the SRC attribute of this IFRAME element to an "about:blank" value. **Recommendations** For Opera version 11.11, as a temporary workaround, consider avoiding the use of the FACE attribute in FONT elements within IFRAME elements, especially when the SRC attribute is set to "about:blank", until a patch is available.