Some vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

1) Several vulnerabilities can be exploited to bypass certain security restrictions, disclose sensitive information, or to potentially compromise a user's system.

For more information:
SA31984

2) A boundary error exists in the processing of canceled newsgroup messages. This can be exploited to cause a heap-based buffer overflow via a newsgroup message having a specially crafted header.

Successful exploitation may allow execution of arbitrary code.

The vulnerabilities are reported in versions prior to 1.1.12.

Solution
Update to version 1.1.12.

Provided and/or discovered by
2) The vendor credits Georgi Guninski.

Changelog
Further details available in Customer Area

Original Advisory
http://www.mozilla.org/security/announce/2008/mfsa2008-37.html
http://www.mozilla.org/security/announce/2008/mfsa2008-38.html
http://www.mozilla.org/security/announce/2008/mfsa2008-40.html
http://www.mozilla.org/security/announce/2008/mfsa2008-41.html
http://www.mozilla.org/security/announce/2008/mfsa2008-42.html
http://www.mozilla.org/security/announce/2008/mfsa2008-43.html
http://www.mozilla.org/security/announce/2008/mfsa2008-44.html
http://www.mozilla.org/security/announce/2008/mfsa2008-45.html
http://www.mozilla.org/security/announce/2008/mfsa2008-46.html

Other references
Further details available in Customer Area

Deep Links
Links available in Customer Area