Sachin Shinde

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 9 through 10 **Description** The issue is related to memory corruption, allowing remote attackers to execute arbitrary code or cause a denial of service. This is due to improper access to objects in memory, which could lead to memory corruption and allow an attacker to execute arbitrary code in the context of the current user. The vulnerability is also associated with a lack of input validation, which can be exploited by a remote attacker. **Recommendations** For Microsoft Internet Explorer versions 9 and 10, update to a newer version to mitigate the risk. As a temporary workaround, consider restricting access to potentially malicious websites to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer version 9 **Description** The issue is related to improper memory access, which could lead to memory corruption. This allows remote attackers to execute arbitrary code or cause a denial of service. The vulnerability is triggered by accessing specially crafted web sites, which can exploit the improper memory access to execute code in the context of the current user. **Recommendations** For Internet Explorer version 9, update to a newer version that addresses the memory corruption issue to prevent remote code execution and denial of service attacks.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 24.0 Firefox ESR versions prior to 17.0.9 Thunderbird versions prior to 24.0 Thunderbird ESR versions prior to 17.0.9 SeaMonkey versions prior to 2.21 **Description** The issue arises from improper handling of XBL-backed nodes movement between documents, allowing remote attackers to execute arbitrary code or cause a denial of service. This can result in a JavaScript compartment mismatch or an assertion failure and application exit via a crafted web site. **Recommendations** For Mozilla Firefox versions prior to 24.0, update to version 24.0 or later. For Firefox ESR versions prior to 17.0.9, update to version 17.0.9 or later. For Thunderbird versions prior to 24.0, update to version 24.0 or later. For Thunderbird ESR versions prior to 17.0.9, update to version 17.0.9 or later. For SeaMonkey versions prior to 2.21, update to version 2.21 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 27.0.1453.93 **Description** A use-after-free issue in the Cascading Style Sheets (CSS) implementation allows remote attackers to cause a denial of service or possibly have other unspecified impacts via vectors related to style resolution. **Recommendations** For versions prior to 27.0.1453.93, update to version 27.0.1453.93 or later to resolve the issue.