The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities:
- Firefox 14
- Firefox ESR 10.0.6
- Thunderbird 14
- Thunderbird ESR 10.0.6
- SeaMonkey 2.11
These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, disclose sensitive information, operate with elevated privileges, bypass security restrictions, or perform a cross-site scripting attack.
US-CERT encourages users and administrators to review the Mozilla Foundation Advisory for Firefox 14, Firefox ESR 10.0.6, Thunderbird 14, Thunderbird ESR 10.0.6, and SeaMonkey 2.11 and apply any necessary updates to help mitigate the risk.