Bc

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 3.6.28 and 4.x through 10.0 Firefox ESR 10.x versions prior to 10.0.3 Thunderbird versions prior to 3.1.20 and 5.0 through 10.0 Thunderbird ESR 10.x versions prior to 10.0.3 SeaMonkey versions prior to 2.8 **Description** The issue allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. **Recommendations** For Mozilla Firefox versions prior to 3.6.28, update to version 3.6.28 or later. For Mozilla Firefox versions 4.x through 10.0, update to version 10.0 or later. For Firefox ESR 10.x versions prior to 10.0.3, update to version 10.0.3 or later. For Thunderbird versions prior to 3.1.20, update to version 3.1.20 or later. For Thunderbird versions 5.0 through 10.0, update to version 10.0 or later. For Thunderbird ESR 10.x versions prior to 10.0.3, update to version 10.0.3 or later. For SeaMonkey versions prior to 2.8, update to version 2.8 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 3.6.26 and 4.x through 9.0 Thunderbird versions prior to 3.1.18 and 5.0 through 9.0 SeaMonkey versions prior to 2.7 **Description** The issue is related to multiple unspecified vulnerabilities in the browser engine, which can be exploited by remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly execute arbitrary code via unknown vectors. **Recommendations** For Mozilla Firefox versions prior to 3.6.26, update to version 3.6.26 or later. For Mozilla Firefox versions 4.x through 9.0, update to a version later than 9.0. For Thunderbird versions prior to 3.1.18, update to version 3.1.18 or later. For Thunderbird versions 5.0 through 9.0, update to a version later than 9.0. For SeaMonkey versions prior to 2.7, update to version 2.7 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 3.5.x through 3.5.18 Mozilla Firefox versions 3.6.x through 3.6.16 Thunderbird versions prior to 3.1.10 SeaMonkey versions prior to 2.0.14 **Description** The issue is related to multiple unspecified vulnerabilities in the browser engine, allowing remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly execute arbitrary code via unknown vectors. **Recommendations** For Mozilla Firefox versions 3.5.x through 3.5.18, update to version 3.5.19 or later. For Mozilla Firefox versions 3.6.x through 3.6.16, update to version 3.6.17 or later. For Thunderbird versions prior to 3.1.10, update to version 3.1.10 or later. For SeaMonkey versions prior to 2.0.14, update to version 2.0.14 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 3.0.x through 3.0.17 Mozilla Firefox versions 3.5.x through 3.5.7 Thunderbird versions prior to 3.0.2 SeaMonkey versions prior to 2.0.3 **Description** The issue allows remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly execute arbitrary code. This is related to the `nsBlockFrame::StealFrame` function in `layout/generic/nsBlockFrame.cpp` and other unspecified vectors. **Recommendations** For Mozilla Firefox versions 3.0.x through 3.0.17, update to version 3.0.18 or later. For Mozilla Firefox versions 3.5.x through 3.5.7, update to version 3.5.8 or later. For Thunderbird versions prior to 3.0.2, update to version 3.0.2 or later. For SeaMonkey versions prior to 2.0.3, update to version 2.0.3 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 3.5.x through 3.5.5 SeaMonkey versions prior to 2.0.1 **Description** The issue is related to memory safety problems, which could allow attackers to cause a denial of service, potentially leading to an application crash, or execute arbitrary code. **Recommendations** For Mozilla Firefox versions 3.5.x through 3.5.5, update to version 3.5.6 or later. For SeaMonkey versions prior to 2.0.1, update to version 2.0.1 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 3.5.x through 3.5.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly execute arbitrary code. This is related to the `TraceRecorder::snapshot` function in `js/src/jstracer.cpp` and other unspecified vectors. **Recommendations** For Mozilla Firefox versions 3.5.x through 3.5.1, update to version 3.5.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 3.0.12 **Description** The issue is related to a "memory safety bug" in the JavaScript engine, specifically in the js watch set function. This bug can be exploited by remote attackers using a crafted .js file, potentially leading to a denial of service or possibly the execution of arbitrary code. **Recommendations** For versions prior to 3.0.12, update to version 3.0.12 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 2.x prior to 2.0.0.18 Thunderbird versions 2.x prior to 2.0.0.18 SeaMonkey versions 1.x prior to 1.1.13 **Description** The issue is related to the AppendAttributeValue function in the JavaScript engine, which allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption. **Recommendations** For Mozilla Firefox versions 2.x prior to 2.0.0.18, update to version 2.0.0.18 or later. For Thunderbird versions 2.x prior to 2.0.0.18, update to version 2.0.0.18 or later. For SeaMonkey versions 1.x prior to 1.1.13, update to version 1.1.13 or later.