Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2013-0791
HistoryApr 03, 2013 - 12:00 a.m.

CVE-2013-0791

2013-04-0300:00:00
ubuntu.com
ubuntu.com
8

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.069

Percentile

93.9%

JSON

The CERT_DecodeCertPackage function in Mozilla Network Security Services
(NSS), as used in Mozilla Firefox before 20.0, Firefox ESR 17.x before
17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5,
SeaMonkey before 2.17, and other products, allows remote attackers to cause
a denial of service (out-of-bounds read and memory corruption) via a
crafted certificate.

Notes

Author Note
jdstrand xulrunner-1.9.2 unmaintained upstream (see README.mozilla for details)
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchfirefox< 20.0+build1-0ubuntu0.10.04.3UNKNOWN
ubuntu11.10noarchfirefox< 20.0+build1-0ubuntu0.11.10.3UNKNOWN
ubuntu12.04noarchfirefox< 20.0+build1-0ubuntu0.12.04.3UNKNOWN
ubuntu12.10noarchfirefox< 20.0+build1-0ubuntu0.12.10.3UNKNOWN
ubuntu13.04noarchfirefox< 20.0+build1-0ubuntu1UNKNOWN
ubuntu13.10noarchfirefox< 20.0+build1-0ubuntu1UNKNOWN
ubuntu10.04noarchnss< 3.14.3-0ubuntu0.10.04.1UNKNOWN
ubuntu11.10noarchnss< 3.14.3-0ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchnss< 3.14.3-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchnss< 3.14.3-0ubuntu0.12.10.1UNKNOWN
Rows per page:
1-10 of 181

Related

openvas 49
cve 1
prion 1
veracode 2
debiancve 1
mozilla 1
nvd 1
cvelist 1
redhat 3
nessus 39
amazon 2
oraclelinux 2
centos 2
ubuntu 3
suse 7
vmware 1
freebsd 1
securityvulns 1
osv 1
gentoo 1
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-40) - Linux
2021-11-11 00:00:00
RedHat Update for nss and nspr RHSA-2013:1135-01
2013-08-08 00:00:00
CentOS Update for nspr CESA-2013:1144 centos6
2013-08-08 00:00:00
cve
cve
CVE-2013-0791
2013-04-03 11:56:21
prion
prion
Out-of-bounds
2013-04-03 11:56:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:57:12
Timing Side-Channel
2019-05-02 04:48:16
debiancve
debiancve
CVE-2013-0791
2013-04-03 11:56:21
mozilla
mozilla
Out-of-bounds array read in CERT_DecodeCertPackage — Mozilla
2013-04-02 00:00:00
nvd
nvd
CVE-2013-0791
2013-04-03 11:56:21
cvelist
cvelist
CVE-2013-0791
2013-04-03 10:00:00
redhat
redhat
(RHSA-2013:1144) Moderate: nss, nss-util, nss-softokn, and nspr security update
2013-08-07 00:00:00
(RHSA-2013:1135) Moderate: nss and nspr security, bug fix, and enhancement update
2013-08-05 00:00:00
(RHSA-2013:1181) Moderate: rhev-hypervisor6 security and bug fix update
2013-08-27 00:00:00
nessus
nessus
RHEL 6 : nss, nss-util, nss-softokn, and nspr (RHSA-2013:1144)
2013-08-08 00:00:00
RHEL 5 : nss and nspr (RHSA-2013:1135)
2013-08-06 00:00:00
Amazon Linux AMI : nss (ALAS-2013-217)
2013-10-01 00:00:00
amazon
amazon
Medium: nspr
2013-08-07 21:23:00
Medium: nss
2013-08-07 21:23:00
oraclelinux
oraclelinux
nss and nspr security, bug fix, and enhancement update
2013-08-05 00:00:00
nss, nss-util, nss-softokn, and nspr security update
2013-08-07 00:00:00
centos
centos
nspr, nss security update
2013-08-07 22:22:50
nspr, nss security update
2013-08-05 19:56:06
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-04-08 00:00:00
Firefox vulnerabilities
2013-04-04 00:00:00
Unity Firefox Extension update
2013-04-04 00:00:00
suse
suse
Mozilla Firefox and others: Update to 20.0/17.0.5 releases (important)
2013-04-05 18:06:10
Security update for Mozilla Firefox (important)
2013-05-31 19:04:12
Security update for Mozilla Firefox (important)
2013-05-28 21:04:38
vmware
vmware
VMware ESX updates to third party libraries
2013-12-05 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-04-02 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-04-03 00:00:00
osv
osv
libfreebl3-3.26.2-1.1 on GA media
2024-06-15 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.069

Percentile

93.9%

JSON
Related for UB:CVE-2013-0791
openvas49cve1prion1veracode2debiancve1mozilla1nvd1cvelist1redhat3nessus39amazon2oraclelinux2centos2ubuntu3suse7vmware1freebsd1securityvulns1osv1gentoo1