The vulnerability in the JavaScript script handler of Firefox browsers, Firefox ESR, and the email client Thunderbird allows a hacker to execute arbitrary code.

The vulnerability of JavaScript script handlers in Firefox, Firefox ESR, and the email client Thunderbird lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by opening a specially crafted...