:Bholley

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 39.0 Mozilla Firefox ESR versions 31.x prior to 31.8 and 38.x prior to 38.1 Thunderbird versions prior to 38.1 **Description** The issue is caused by a buffer overflow in dynamic memory, which can be exploited by a remote attacker to cause a denial of service or execute arbitrary code. The vulnerability affects the browser engine and can lead to memory corruption and application crash. **Recommendations** For Mozilla Firefox versions prior to 39.0, update to version 39.0 or later to resolve the issue. For Mozilla Firefox ESR versions 31.x prior to 31.8, update to version 31.8 or later to resolve the issue. For Mozilla Firefox ESR versions 38.x prior to 38.1, update to version 38.1 or later to resolve the issue. For Thunderbird versions prior to 38.1, update to version 38.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 35.0 SeaMonkey versions prior to 2.32 **Description** The issue is related to the XrayWrapper implementation, which does not properly interact with a DOM object that has a named getter. This might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via unspecified vectors. **Recommendations** For Mozilla Firefox versions prior to 35.0, update to version 35.0 or later. For SeaMonkey versions prior to 2.32, update to version 2.32 or later.