Mozilla Products Privilege Escalation Vulnerabily (MAC OS X)

Summary
The host is installed with Mozilla firefox/thunderbird and is prone to privilege escalation vulnerability.
Impact
Successful exploitation will let attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior. Impact Level: System/Application
Solution
Upgrade to Mozilla Firefox version 3.6.24 or later, For updates refer to http://www.mozilla.com/en-US/firefox/all.html Upgrade to Thunderbird version to 3.1.16 or later http://www.mozilla.org/en-US/thunderbird/
Insight
The flaws are due to - Error in JSSubScriptLoader, which fails to handle XPCNativeWrappers during calls to the loadSubScript method in an add-on.
Affected
Thunderbird version prior to 3.1.16 Mozilla Firefox version prior to 3.6.24
References