Mozilla Releases Security Advisory

Mozilla has released a security advisory to address a vulnerability in Thunderbird and SeaMonkey.  This vulnerability is due to an error in the way that external-body MIME types are handled.  By convincing a user to view a specially crafted email message, an unauthenticated, remote attacker may be able to execute arbitrary code.

US-CERT encourages users to review Mozilla Foundation Security Advisory 2008-12 and upgrade to Thunderbird 2.0.0.12 or SeaMonkey 1.1.8.

US-CERT will provide more information as it becomes available.