Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMozillaCVE-2013-0782
HistoryFeb 19, 2013 - 11:55 p.m.

CVE-2013-0782

2013-02-1923:55:01
CWE-787
mozilla
web.nvd.nist.gov
69
cve-2013-0782
buffer overflow
mozilla firefox
remote code execution
nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.027

Percentile

90.5%

JSON

Heap-based buffer overflow in the nsSaveAsCharset::DoCharsetConversion function in Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to execute arbitrary code via unspecified vectors.

Affected configurations

Nvd
Node
mozillafirefoxRange<19.0
OR
mozillafirefox_esrRange<17.0.3
OR
mozillaseamonkeyRange<2.16
OR
mozillathunderbirdRange<17.0.3
OR
mozillathunderbird_esrRange<17.0.3
Node
opensuseopensuseMatch11.4
OR
opensuseopensuseMatch12.1
OR
opensuseopensuseMatch12.2
Node
redhatenterprise_linux_ausMatch5.9
OR
redhatenterprise_linux_desktopMatch5.0
OR
redhatenterprise_linux_desktopMatch6.0
OR
redhatenterprise_linux_eusMatch5.9
OR
redhatenterprise_linux_eusMatch6.3
OR
redhatenterprise_linux_serverMatch5.0
OR
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_workstationMatch5.0
OR
redhatenterprise_linux_workstationMatch6.0
Node
debiandebian_linuxMatch7.0
Node
canonicalubuntu_linuxMatch10.04-
OR
canonicalubuntu_linuxMatch11.10
OR
canonicalubuntu_linuxMatch12.04esm
OR
canonicalubuntu_linuxMatch12.10

Related

ubuntucve 1
nvd 1
cvelist 1
prion 1
veracode 1
openvas 61
nessus 31
centos 2
redhat 2
oraclelinux 2
mozilla 1
suse 4
ubuntu 3
securityvulns 1
debian 1
ibm 2
gentoo 1
ubuntucve
ubuntucve
CVE-2013-0782
2013-02-20 00:00:00
nvd
nvd
CVE-2013-0782
2013-02-19 23:55:01
cvelist
cvelist
CVE-2013-0782
2013-02-19 23:00:00
prion
prion
Heap overflow
2013-02-19 23:55:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:52:50
openvas
openvas
CentOS Update for thunderbird CESA-2013:0272 centos5
2013-02-22 00:00:00
Oracle: Security Advisory (ELSA-2013-0272)
2015-10-06 00:00:00
CentOS Update for libproxy CESA-2013:0271 centos6
2013-02-22 00:00:00
nessus
nessus
Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20130219)
2013-02-21 00:00:00
CentOS 5 / 6 : devhelp / firefox / libproxy / xulrunner / yelp (CESA-2013:0271)
2013-02-20 00:00:00
Oracle Linux 5 / 6 : firefox (ELSA-2013-0271)
2013-07-12 00:00:00
centos
centos
thunderbird security update
2013-02-20 04:09:27
devhelp, firefox, libproxy, xulrunner, yelp security update
2013-02-20 03:20:40
redhat
redhat
(RHSA-2013:0272) Critical: thunderbird security update
2013-02-19 00:00:00
(RHSA-2013:0271) Critical: firefox security update
2013-02-19 00:00:00
oraclelinux
oraclelinux
firefox security update
2013-02-19 00:00:00
thunderbird security update
2013-02-19 00:00:00
mozilla
mozilla
Use-after-free, out of bounds read, and buffer overflow issues found using Address Sanitizer — Mozilla
2013-02-19 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2013-03-08 22:04:48
Security update for Mozilla Firefox (important)
2013-03-15 19:04:45
Mozilla: February 2013 update round (Firefox 19) (important)
2013-02-22 14:04:25
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-02-25 00:00:00
Firefox vulnerabilities
2013-02-20 00:00:00
Firefox regression
2013-03-01 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-02-24 00:00:00
debian
debian
[SECURITY] [DSA 2699-1] iceweasel security update
2013-06-02 16:37:13
ibm
ibm
Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
Security Bulletin: Storwize V7000 Unified Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.027

Percentile

90.5%

JSON
Related for CVE-2013-0782
ubuntucve1nvd1cvelist1prion1veracode1openvas61nessus31centos2redhat2oraclelinux2mozilla1suse4ubuntu3securityvulns1debian1ibm2gentoo1