Bernd Mielke

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 2.0.0.5 Thunderbird versions prior to 2.0.0.5 **Description** The issue is related to multiple unspecified vulnerabilities in the browser engine that can cause a denial of service (crash) due to memory corruption when processing unspecified vectors. **Recommendations** For Mozilla Firefox versions prior to 2.0.0.5, update to version 2.0.0.5 or later. For Thunderbird versions prior to 2.0.0.5, update to version 2.0.0.5 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 1.5.0.7 Thunderbird versions prior to 1.5.0.7 SeaMonkey versions prior to 1.0.5 libnspr4 (affected versions not specified) libnss3 (affected versions not specified) libnspr-dev (affected versions not specified) libnss-dev (affected versions not specified) **Description** The issue involves multiple unspecified vulnerabilities that can be exploited remotely, potentially leading to a denial of service, memory corruption, and possibly the execution of arbitrary code. This can be achieved via unspecified vectors, some of which may involve JavaScript, large images, or plugin data. The vulnerabilities can compromise the confidentiality, integrity, and availability of protected information. **Recommendations** For Firefox versions prior to 1.5.0.7, update to version 1.5.0.7 or later. For Thunderbird versions prior to 1.5.0.7, update to version 1.5.0.7 or later. For SeaMonkey versions prior to 1.0.5, update to version 1.0.5 or later. For libnspr4, libnss3, libnspr-dev, and libnss-dev, at the moment, there is no information about a newer version that contains a fix for this vulnerability.