The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities.
- Firefox 21.0
- Firefox ESR 17.0.6
- Thunderbird 17.0.6
- Thunderbird ESR 17.0.6
These vulnerabilities could allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, or operate with elevated privileges.
US-CERT encourages users and administrators to review the Mozilla Foundation Advisory for Firefox 21.0, Firefox ESR 17.0.6, Thunderbird 17.0.6, and Thunderbird ESR 17.0.6 and apply any necessary updates to help mitigate the risk.