Intrusion Prevention



This indicates an attempt to exploit a code-execution vulnerability
in Mozilla products.
This vulnerability is caused by an error when the vulnerable software handles the setting of the "window.__proto__.__proto__" object. It allows a remote attacker to execute arbitrary code via sending a malicious web page.

Affected Products

Mozilla Firefox 3.x before 3.0.2
Mozilla Firefox 2.x before
Mozilla Thunderbird 2.x before
Mozilla SeaMonkey 1.x before 1.1.13


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the following web site:

CVE References