Multiple unspecified vulnerabilities in the browser engine in Mozilla
Firefox before 3.6.18 and Thunderbird before 3.1.11 allow remote
attackers to cause a denial of service (memory corruption and
application crash) or possibly execute arbitrary code via unknown
vectors.