Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMozillaCVE-2013-0772
HistoryFeb 19, 2013 - 11:55 p.m.

CVE-2013-0772

2013-02-1923:55:01
CWE-119
mozilla
web.nvd.nist.gov
53
mozilla firefox
thunderbird
seamonkey
rasterimage
drawframeto
vulnerability
cve-2013-0772
nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

AI Score

8.8

Confidence

High

EPSS

0.017

Percentile

87.9%

JSON

The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application crash) via a crafted GIF image.

Affected configurations

Nvd
Node
mozillafirefoxRange<19.0
OR
mozillaseamonkeyRange<2.16
Node
opensuseopensuseMatch11.4
OR
opensuseopensuseMatch12.1
OR
opensuseopensuseMatch12.2
Node
redhatenterprise_linux_ausMatch5.9
OR
redhatenterprise_linux_desktopMatch5.0
OR
redhatenterprise_linux_desktopMatch6.0
OR
redhatenterprise_linux_eusMatch5.9
OR
redhatenterprise_linux_eusMatch6.3
OR
redhatenterprise_linux_serverMatch5.0
OR
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_workstationMatch5.0
OR
redhatenterprise_linux_workstationMatch6.0
Node
canonicalubuntu_linuxMatch10.04-
OR
canonicalubuntu_linuxMatch11.10
OR
canonicalubuntu_linuxMatch12.04esm
OR
canonicalubuntu_linuxMatch12.10
VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
opensuseopensuse11.4cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
opensuseopensuse12.1cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
opensuseopensuse12.2cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
redhatenterprise_linux_aus5.9cpe:2.3:o:redhat:enterprise_linux_aus:5.9:*:*:*:*:*:*:*
redhatenterprise_linux_desktop5.0cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
redhatenterprise_linux_desktop6.0cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
redhatenterprise_linux_eus5.9cpe:2.3:o:redhat:enterprise_linux_eus:5.9:*:*:*:*:*:*:*
redhatenterprise_linux_eus6.3cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

nvd 1
veracode 1
prion 1
ubuntucve 1
cvelist 1
openvas 30
mozilla 1
nessus 24
freebsd 1
centos 2
redhat 2
suse 3
securityvulns 1
ubuntu 2
gentoo 1
nvd
nvd
CVE-2013-0772
2013-02-19 23:55:01
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:53:12
prion
prion
Out-of-bounds
2013-02-19 23:55:00
ubuntucve
ubuntucve
CVE-2013-0772
2013-02-20 00:00:00
cvelist
cvelist
CVE-2013-0772
2013-02-19 23:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-22) - Linux
2021-11-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0410-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0471-1)
2021-06-09 00:00:00
mozilla
mozilla
Out-of-bounds read in image rendering — Mozilla
2013-02-19 00:00:00
nessus
nessus
FreeBSD : mozilla -- multiple vulnerabilities (e3f0374a-7ad6-11e2-84cd-d43d7e0c7c02)
2013-02-20 00:00:00
CentOS 5 / 6 : firefox (CESA-2013:1812)
2013-12-12 00:00:00
Oracle Linux 5 / 6 : firefox (ELSA-2013-1812)
2013-12-12 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-02-19 00:00:00
centos
centos
firefox security update
2013-12-11 11:44:39
thunderbird security update
2013-12-11 23:13:52
redhat
redhat
(RHSA-2013:1812) Critical: firefox security update
2013-12-11 00:00:00
(RHSA-2013:1823) Important: thunderbird security update
2013-12-11 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2013-03-08 22:04:48
Security update for Mozilla Firefox (important)
2013-03-15 19:04:45
Mozilla: February 2013 update round (Firefox 19) (important)
2013-02-22 14:04:25
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-02-24 00:00:00
ubuntu
ubuntu
Firefox regression
2013-03-01 00:00:00
Firefox vulnerabilities
2013-02-20 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

AI Score

8.8

Confidence

High

EPSS

0.017

Percentile

87.9%

JSON
Related for CVE-2013-0772
nvd1veracode1prion1ubuntucve1cvelist1openvas30mozilla1nessus24freebsd1centos2redhat2suse3securityvulns1ubuntu2gentoo1