vendor:
Firefox, Thunderbird, Seamonkey
by:
Not mentioned
7.5
CVSS
HIGH
Memory Corruption
119
CWE
Product Name: Firefox, Thunderbird, Seamonkey
Affected Version From: Prior to Firefox 3.6.11, Firefox 3.5.14, Thunderbird 3.1.5, Thunderbird 3.0.9, SeaMonkey 2.0.9
Affected Version To:
Patch Exists: YES
Related CWE: Not mentioned
CPE: a:mozilla:firefox, cpe:/a:mozilla:thunderbird, cpe:/a:mozilla:seamonkey
Platforms Tested:
2010
Memory Corruption Vulnerability in Mozilla Firefox, Thunderbird, and Seamonkey
The vulnerability allows an attacker to execute arbitrary code in the context of the user running an affected application. It occurs due to inadequate validation of user-supplied data in Mozilla Firefox, Thunderbird, and Seamonkey.
Mitigation:
Update to Firefox 3.6.11, Firefox 3.5.14, Thunderbird 3.1.5, Thunderbird 3.0.9, or SeaMonkey 2.0.9 or later versions.