Multiple security vulnerabilities in the Firefox and Thunderbird applications shipped with Solaris 10 may allow local and remote unprivileged users to inject arbitrary URLs into affected web pages, execute arbitrary code on a remote machine, gain access to unauthorized data or cause a Denial of Service (DoS).
The following Mozilla advisories describe the vulnerabilities:
CERT Technical Cyber Security Alert TA07-199A at http://www.us-cert.gov/cas/techalerts/TA07-199A.html
US-CERT VU#143297 at http://www.kb.cert.org/vuls/id/143297
US-CERT VU#783400 at http://www.kb.cert.org/vuls/id/783400
US-CERT VU#403150 at http://www.kb.cert.org/vuls/id/403150