CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
94.6%
The Mozilla Project reports:
MFSA 2013-30 Miscellaneous memory safety hazards (rv:20.0 /
rv:17.0.5)
MFSA 2013-31 Out-of-bounds write in Cairo library
MFSA 2013-32 Privilege escalation through Mozilla Maintenance
Service
MFSA 2013-33 World read and write access to app_tmp directory on
Android
MFSA 2013-34 Privilege escalation through Mozilla Updater
MFSA 2013-35 WebGL crash with Mesa graphics driver on Linux
MFSA 2013-36 Bypass of SOW protections allows cloning of protected
nodes
MFSA 2013-37 Bypass of tab-modal dialog origin disclosure
MFSA 2013-38 Cross-site scripting (XSS) using timed history
navigations
MFSA 2013-39 Memory corruption while rendering grayscale PNG
images
MFSA 2013-40 Out-of-bounds array read in CERT_DecodeCertPackage
www.mozilla.org/security/announce/2013/mfsa2013-30.html
www.mozilla.org/security/announce/2013/mfsa2013-31.html
www.mozilla.org/security/announce/2013/mfsa2013-32.html
www.mozilla.org/security/announce/2013/mfsa2013-33.html
www.mozilla.org/security/announce/2013/mfsa2013-34.html
www.mozilla.org/security/announce/2013/mfsa2013-35.html
www.mozilla.org/security/announce/2013/mfsa2013-36.html
www.mozilla.org/security/announce/2013/mfsa2013-37.html
www.mozilla.org/security/announce/2013/mfsa2013-38.html
www.mozilla.org/security/announce/2013/mfsa2013-39.html
www.mozilla.org/security/announce/2013/mfsa2013-40.html
www.mozilla.org/security/known-vulnerabilities/