CVE-2013-0799Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.2%
top 57.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla FirefoxMozilla ThunderbirdMozilla Thunderbird ESR
Timeline
PublishedApr 3
Latest updateMay 17

Description

Buffer overflow in the Mozilla Maintenance Service in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, and Thunderbird ESR 17.x before 17.0.5 on Windows allows local users to gain privileges via crafted arguments.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages3 packages

NVDmozilla/firefox19.0.2+7
NVDmozilla/thunderbird5 versions+4
NVDmozilla/thunderbird_esr5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-q8jc-qwxv-cxmc: Buffer overflow in the Mozilla Maintenance Service in Mozilla Firefox before 202022-05-17
CVEList
CVE-2013-0799: Buffer overflow in the Mozilla Maintenance Service in Mozilla Firefox before 202013-04-03
CVE-2013-0799 — Mozilla Firefox vulnerability | cvebase