Lucene search

K

Mozilla FoundationMFSA2013-21

HistoryFeb 19, 2013 - 12:00 a.m.

Miscellaneous memory safety hazards (rv:19.0 / rv:17.0.3) — Mozilla

2013-02-1900:00:00

Mozilla Foundation

www.mozilla.org

24

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.017

Percentile

87.9%

Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code.

Affected configurations

Vulners

Node

mozillafirefoxRange<19

OR

mozillafirefox_esrRange<17.0.3

OR

mozillaseamonkeyRange<2.16

OR

mozillathunderbirdRange<17.0.3

OR

mozillathunderbird_esrRange<17.0.3

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0783

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0784

bugzilla.mozilla.org/buglist.cgi?bug_id=830943,799803,799907,819635,766452,827687,805294,801114,790373,809295,810169,797977

bugzilla.mozilla.org/buglist.cgi?bug_id=830975,832162,822858,761448,812380,690970,826471,830399,818241,780549

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.017

Percentile

87.9%

Related for MFSA2013-21

openvas61 prion2 nvd2 cve2 ubuntucve2 cvelist2 veracode1 nessus32 freebsd1 ubuntu3 oraclelinux2 redhat2 securityvulns1 centos2 suse4 debian1 ibm2 gentoo1