Mozilla Foundation Security Advisory 2013-110
Announced: December 10, 2013
Reporter: Dan Gohman
Products: Firefox, Seamonkey
Fixed in: Firefox 26
In general these flaws cannot be exploited through email in the Thunderbird and Seamonkey products because scripting is disabled, but are potentially a risk in browser or browser-like contexts.