After discovering vulnerabilities in Firefox, Firefox ESR, Thunderbird, and Netscape Portable Runtime, Mozilla Foundation has released security updates to fix these vulnerabilities.
These vulnerabilities if exploited can allow hackers to run specific code and install malicious software that could restrict users from anything except normal browsing. These vulnerabilities can also help hackers to gather sensitive data from sites that are visited by the users. Minor security vulnerabilities such as Denial of Service attacks, minor data leaks, or spoofs can also take place through these vulnerabilities.
The below listed security vulnerabilities are known to affect particular versions of Mozilla products:
Firefox 3.6, 3.5, 3.0, 2.0, 1.5, and 1.0 are no longer supported and are affected by vulnerabilities, which are fixed in the newer versions of the program. All users are recommended to upgrade to the newest version of Firefox from here: https://www.mozilla.org/en-US/firefox/new/
Thunderbird 3.1, 3.0, 2.0, 1.5, and 1.0 are no longer supported and are affected by vulnerabilities, which are fixed in the newer versions of the program. All users are advised to upgrade to the newest version of Thunderbird from here: https://www.mozilla.org/en-US/thunderbird/
SeaMonkey 2.0, 1.1 and 1.0 are no longer supported and are affected by vulnerabilities that are fixed in the newer versions of the program. All users are advised to upgrade to the newest version of SeaMonkey from here: https://www.seamonkey-project.org/
Others include Mozilla Suite 1.7, which is no longer supported and is affected by several known vulnerabilities fixed in newer Mozilla-based products. All users are urged to upgrade to a supported product such as Firefox or SeaMonkey.
Patches for higher version of Mozilla products are available, users and administrators are encouraged to review the Security Advisories for these software:
For Firefox: https://www.mozilla.org/security/known-vulnerabilities/firefox.html
For Firefox ESR: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
For Thunderbird: https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
For Netscape Portable Runtime: https://www.mozilla.org/security/announce/2014/mfsa2014-55.html
