The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities.
- Firefox 24.0
- Firefox ESR 17.0.9
- Thunderbird 24.0
- Thunderbird ESR 17.0.9
- Seamonkey 2.21
These vulnerabilities could allow a remote attacker to execute arbitrary code, bypass intended access restrictions, cause a denial-of-service condition, or obtain sensitive information.
US-CERT encourages users and administrators to review the Mozilla Foundation Advisory for Firefox 24.0, Firefox ESR 17.0.9, Thunderbird 24.0, Thunderbird ESR 17.0.9, and Seamonkey 2.21 and apply any necessary updates to help mitigate the risk.