The host is installed with Mozilla Firefox or Seamonkey and is prone to multiple vulnerabilities.

Successful exploitation will let remote attackers to execute arbitrary code. Impact Level: Application

Upgrade to Firefox version 3.5.19 or 3.6.17 or later http://www.mozilla.com/en-US/firefox/all.html Upgrade to Seamonkey version 2.0.14 or later http://www.seamonkey-project.org/releases/

- Multiple use-after-free errors within the handling of the 'mChannel', 'mObserverList', and 'nsTreeRange' object attributes can be exploited to execute arbitrary code. - An error when handling Java applets can be exploited to steal entries from the form history via the autocomplete controls.

SeaMonkey versions before 2.0.14. Mozilla Firefox versions before 3.5.19 and 3.6.x before 3.6.17.

• http://secunia.com/advisories/44357/
• http://www.mozilla.org/security/announce/2011/mfsa2011-12.html
• http://www.vupen.com/english/advisories/2011/1127

---

Updated on 2015-03-25