Mozilla Firefox, Thunderbird, and SeaMonkey HTML Frameset Element Integer Overflow Vulnerability

Firefox, Thunderbird, and SeaMonkey are prone to an integer-overflow vulnerability .

An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed attempts may lead to a denial-of-service condition.

NOTE: This issue was previously discussed in BID 43045 (Mozilla Firefox SeaMonkey and Thunderbird MFSA 2010-49 Through -63 Multiple Vulnerabilities) but has been given its own record to better document it.

This issue is fixed in:
Firefox 3.6.9
Firefox 3.5.12
Thunderbird 3.1.3
Thunderbird 3.0.7
SeaMonkey 2.0.7


Privacy Statement
Copyright 2010, SecurityFocus