CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
95.2%
Versions of SeaMonkey earlier than version 25.0 are prone to the following vulnerabilities:
Miscellaneous use-after-free issues in the browsing engine (CVE-2013-5599, CVE-2013-5600, CVE-2013-5601)
Memory corruption in the Javascript engine when using workers with direct proxy (CVE-2013-5602)
Use-after-free issues when interacting with HTML templates (CVE-2013-5603)
Security bypass via iframe injection using PDF.js (CVE-2013-5598)
Miscellaneous memory safety issues in the browser engine (CVE-2013-5590, CVE-2013-5591, CVE-2013-5592, CVE-2013-1739)
Address spoofing in the addressbar via SELECT element, which can lead to clickjacking and other spoof attacks (CVE-2013-5593)
Access violation due to uninitialized data in XSLT processing (CVE-2013-5604)
Potential buffer/memory overflows in the Javascript engine (CVE-2013-5595)
Race condition causing a crash on extremely large pages (CVE-2013-5596)
A use-after-free issue during state change events when updating the offline cache (CVE-2013-5597)
Binary data 8045.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1739
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5590
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5591
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5592
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5593
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5595
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5596
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5597
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5598
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5599
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5600
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5601
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5602
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5603
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5604
www.mozilla.org/security/announce/2013/mfsa2013-100.html
www.mozilla.org/security/announce/2013/mfsa2013-101.html
www.mozilla.org/security/announce/2013/mfsa2013-102.html
www.mozilla.org/security/announce/2013/mfsa2013-93.html
www.mozilla.org/security/announce/2013/mfsa2013-94.html
www.mozilla.org/security/announce/2013/mfsa2013-95.html
www.mozilla.org/security/announce/2013/mfsa2013-96.html
www.mozilla.org/security/announce/2013/mfsa2013-97.html
www.mozilla.org/security/announce/2013/mfsa2013-98.html
www.mozilla.org/security/announce/2013/mfsa2013-99.html