Michael Jordon

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 4.x through 5 Thunderbird versions prior to 6 SeaMonkey versions 2.x prior to 2.3 **Description** A heap-based buffer overflow issue exists in the Almost Native Graphics Layer Engine (ANGLE) used in the WebGL implementation. This could potentially allow remote attackers to execute arbitrary code via unspecified vectors. **Recommendations** For Mozilla Firefox versions 4.x through 5, update to a version later than 5 to resolve the issue. For Thunderbird versions prior to 6, update to version 6 or later to resolve the issue. For SeaMonkey versions 2.x prior to 2.3, update to version 2.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 4.x through 5 Thunderbird versions prior to 6 SeaMonkey versions 2.x prior to 2.3 **Description** A buffer overflow issue exists in the WebGL shader implementation, allowing remote attackers to execute arbitrary code or cause a denial of service via a long source-code block for a shader. **Recommendations** For Mozilla Firefox versions 4.x through 5, update to a version outside of this range to resolve the issue. For Thunderbird versions prior to 6, update to version 6 or later to resolve the issue. For SeaMonkey versions 2.x prior to 2.3, update to version 2.3 or later to resolve the issue.