The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to multiple vulnerabilities.

Successful exploitation will let attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors. Impact Level: System/Application

Upgrade to Mozilla Firefox version 3.6.28 or 11.0 or later, For updates refer to http://www.mozilla.com/en-US/firefox/all.html Upgrade to SeaMonkey version to 2.8 or later, http://www.mozilla.org/projects/seamonkey/ Upgrade to Thunderbird version to 3.1.20 or 11 or later, http://www.mozilla.org/en-US/thunderbird/

The flaws are due to - Multiple unspecified vulnerabilities in the browser engine. - An improper implementation of the nsWindow failing to validate an instance after event dispatching. - An error when handling 'javascript:'. - A use-after-free error exists within the 'nsSMILTimeValueSpec::ConvertBetweenTimeContainers()' function. - An improper implementation of SVG Filters.

SeaMonkey version before 2.8 Thunderbird ESR version 10.x before 10.0.3 Mozilla Firefox ESR version 10.x before 10.0.3 Thunderbird version before 3.1.20 and 5.0 through 10.0 Mozilla Firefox version before 3.6.28 and 4.x through 10.0

• http://secunia.com/advisories/48402
• http://www.mozilla.org/security/announce/2012/mfsa2012-13.html
• http://www.mozilla.org/security/announce/2012/mfsa2012-14.html
• http://www.mozilla.org/security/announce/2012/mfsa2012-16.html
• http://www.mozilla.org/security/announce/2012/mfsa2012-19.html

---

Updated on 2015-03-25