CVE-2013-1702
critical
CVSS v3
—
CVSS v2
10.0
VIR risk
10.0
Description
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: security@mozilla.org — http://www.mozilla.org/security/announce/2013/mfsa2013-63.html
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| mozilla | seamonkey | {"endIncluding":"2.20"} | |
| mozilla | seamonkey | 2.0 | |
| mozilla | seamonkey | 2.0.1 | |
| mozilla | seamonkey | 2.0.2 | |
| mozilla | seamonkey | 2.0.3 | |
| mozilla | seamonkey | 2.0.4 | |
| mozilla | seamonkey | 2.0.5 | |
| mozilla | seamonkey | 2.0.6 | |
| mozilla | seamonkey | 2.0.7 | |
| mozilla | seamonkey | 2.0.8 | |
| mozilla | seamonkey | 2.0.9 | |
| mozilla | seamonkey | 2.0.10 | |
| mozilla | seamonkey | 2.0.11 | |
| mozilla | seamonkey | 2.0.12 | |
| mozilla | seamonkey | 2.0.13 | |
| mozilla | seamonkey | 2.0.14 | |
| mozilla | seamonkey | 2.1 | |
| mozilla | seamonkey | 2.2 | |
| mozilla | seamonkey | 2.3 | |
| mozilla | seamonkey | 2.3.1 | |
| mozilla | seamonkey | 2.3.2 | |
| mozilla | seamonkey | 2.3.3 | |
| mozilla | seamonkey | 2.4 | |
| mozilla | seamonkey | 2.4.1 | |
| mozilla | seamonkey | 2.5 | |
| mozilla | seamonkey | 2.6 | |
| mozilla | seamonkey | 2.6.1 | |
| mozilla | seamonkey | 2.7 | |
| mozilla | seamonkey | 2.7.1 | |
| mozilla | seamonkey | 2.7.2 | |
| mozilla | seamonkey | 2.8 | |
| mozilla | seamonkey | 2.9 | |
| mozilla | seamonkey | 2.9.1 | |
| mozilla | seamonkey | 2.10 | |
| mozilla | seamonkey | 2.10.1 | |
| mozilla | seamonkey | 2.11 | |
| mozilla | seamonkey | 2.12 | |
| mozilla | seamonkey | 2.12.1 | |
| mozilla | seamonkey | 2.13 | |
| mozilla | seamonkey | 2.13.1 | |
| mozilla | seamonkey | 2.13.2 | |
| mozilla | seamonkey | 2.14 | |
| mozilla | seamonkey | 2.15 | |
| mozilla | seamonkey | 2.15.1 | |
| mozilla | seamonkey | 2.15.2 | |
| mozilla | seamonkey | 2.16 | |
| mozilla | seamonkey | 2.16.1 | |
| mozilla | seamonkey | 2.16.2 | |
| mozilla | seamonkey | 2.17 | |
| mozilla | seamonkey | 2.17.1 | |
| mozilla | seamonkey | 2.18 | |
| mozilla | seamonkey | 2.19 | |
| mozilla | seamonkey | 2.20 | |
| mozilla | firefox | {"endIncluding":"22.0"} | |
| mozilla | firefox | 19.0 | |
| mozilla | firefox | 19.0.1 | |
| mozilla | firefox | 19.0.2 | |
| mozilla | firefox | 20.0 | |
| mozilla | firefox | 20.0.1 | |
| mozilla | firefox | 21.0 | |
References
- http://www.mozilla.org/security/announce/2013/mfsa2013-63.html
- https://bugzilla.mozilla.org/show_bug.cgi?id=844088
- https://bugzilla.mozilla.org/show_bug.cgi?id=854157
- https://bugzilla.mozilla.org/show_bug.cgi?id=855331
- https://bugzilla.mozilla.org/show_bug.cgi?id=858060
- https://bugzilla.mozilla.org/show_bug.cgi?id=861530
- https://bugzilla.mozilla.org/show_bug.cgi?id=862185
- https://bugzilla.mozilla.org/show_bug.cgi?id=870200
- https://bugzilla.mozilla.org/show_bug.cgi?id=874974
- https://bugzilla.mozilla.org/show_bug.cgi?id=878703
- https://bugzilla.mozilla.org/show_bug.cgi?id=879139
- https://bugzilla.mozilla.org/show_bug.cgi?id=893684
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18876
- http://www.mozilla.org/security/announce/2013/mfsa2013-63.html
- https://bugzilla.mozilla.org/show_bug.cgi?id=844088
- https://bugzilla.mozilla.org/show_bug.cgi?id=854157
- https://bugzilla.mozilla.org/show_bug.cgi?id=855331
- https://bugzilla.mozilla.org/show_bug.cgi?id=858060
- https://bugzilla.mozilla.org/show_bug.cgi?id=861530
- https://bugzilla.mozilla.org/show_bug.cgi?id=862185
- https://bugzilla.mozilla.org/show_bug.cgi?id=870200
- https://bugzilla.mozilla.org/show_bug.cgi?id=874974
- https://bugzilla.mozilla.org/show_bug.cgi?id=878703
- https://bugzilla.mozilla.org/show_bug.cgi?id=879139
- https://bugzilla.mozilla.org/show_bug.cgi?id=893684
Verify integrity in audit chain (admin only). AS-IS.