The Mozilla Foundation has issued “critical” security updates to
vulnerabilities discovered in the Firefox browser, Thunderbird e-mail
client and SeaMonkey application suite.

Flaws were found in versions of the open-source software prior to both Firefox 2.0.0.1 and Firefox 1.5.0.9, as well as prior to Thunderbird 1.5.0.9 and SeaMonkey 1.0.7, Mozilla said Tuesday.

The vulnerabilities could potentially be exploited to conduct
cross-site scripting attacks, to let malicious attackers launch a
remote execution of code on users’ computers, and to expose sensitive
information, according to an advisory from security company Secunia.

CNet News