CVE-2010-3400

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions 3.5.x through 3.5.9 Mozilla Firefox versions 3.6.x through 3.6.3 SeaMonkey versions prior to 2.0.5

Description The issue is related to the js InitRandom function in the JavaScript implementation, which uses the current time for seeding a random number generator. This makes it easier for remote attackers to guess the seed value via a brute-force attack.

Recommendations For Mozilla Firefox versions 3.5.x through 3.5.9, update to version 3.5.10 or later. For Mozilla Firefox versions 3.6.x through 3.6.3, update to version 3.6.4 or later. For SeaMonkey versions prior to 2.0.5, update to version 2.0.5 or later.