SeaMonkey < 1.1.11 CSSValue Array Memory Corruption
High Nessus Plugin ID 33506
SynopsisA web browser on the remote host is affected by a code execution vulnerability.
DescriptionThe installed version of SeaMonkey may allow a remote attacker to execute arbitrary code on the remote host by creating a very large number of references to a common CSS object, which can lead to an overflow the CSS reference counter, causing a crash when the browser attempts to free the CSS object while still in use.
SolutionUpgrade to SeaMonkey 1.1.11 or later.