CVE-2013-0789 — Out-of-bounds Write in Mozilla Firefox

6 documents6 sources

Severity

10.0CRITICALNVD

EPSS

1.9%

top 16.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey

Timeline

PublishedApr 3

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 20.0 and SeaMonkey before 2.17 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the nsContentUtils::HoldJSObjects function and the nsAutoPtr class, and other vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDmozilla/firefox19.0.2+2

▶NVDmozilla/seamonkey2.17+48

🔴Vulnerability Details

GHSA

GHSA-2c67-fjgj-8c9f: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 20↗2022-05-17

▶

CVEList

CVE-2013-0789: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 20↗2013-04-03

▶

📋Vendor Advisories

Ubuntu

Firefox vulnerabilities↗2013-04-04

▶

Red Hat

Mozilla: Miscellaneous memory safety hazards (rv:20.0) (MFSA 2013-30)↗2013-04-02

▶

💬Community

Bugzilla

CVE-2013-0789 Mozilla: Miscellaneous memory safety hazards (rv:20.0) (MFSA 2013-30)↗2013-04-01

▶