Mozilla has released Firefox 3.5.6 and Firefox 3.0.16 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, operate with escalated privileges, or mislead users. These vulnerabilities may also affect SeaMonkey and Thunderbird.

US-CERT encourages users and administrators to review the security advisories for their version of Firefox and upgrade to Firefox 3.5.6 or Firefox 3.0.16 to help mitigate the risks.

Read more: US-CERT Current Activity