The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities.
- Firefox 23.0
- Firefox ESR 17.0.8
- Thunderbird 17.0.8
- Thunderbird ESR 17.0.8
- Seamonkey 2.20
These vulnerabilities could allow a remote attacker to cause a denial of service condition, conduct a cross-site scripting attack, execute arbitrary code, or bypass intended restrictions.
US-CERT encourages users and administrators to review the Mozilla Foundation Advisory for Firefox 23.0, Firefox ESR 17.0.8, Thunderbird 17.0.8, Thunderbird ESR 17.0.8, and Seamonkey 2.20 and apply any necessary updates to help mitigate the risk.