CVE-2013-1669HIGH
Description
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
References
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00012.html
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00008.html
http://www.mozilla.org/security/announce/2013/mfsa2013-41.html
http://www.securityfocus.com/bid/59870
http://www.ubuntu.com/usn/USN-1822-1
http://www.ubuntu.com/usn/USN-1823-1
https://bugzilla.mozilla.org/show_bug.cgi?id=791432
https://bugzilla.mozilla.org/show_bug.cgi?id=803228
https://bugzilla.mozilla.org/show_bug.cgi?id=814552
https://bugzilla.mozilla.org/show_bug.cgi?id=819775
https://bugzilla.mozilla.org/show_bug.cgi?id=821479
https://bugzilla.mozilla.org/show_bug.cgi?id=821850
https://bugzilla.mozilla.org/show_bug.cgi?id=822910
https://bugzilla.mozilla.org/show_bug.cgi?id=826104
https://bugzilla.mozilla.org/show_bug.cgi?id=826392
https://bugzilla.mozilla.org/show_bug.cgi?id=826588
https://bugzilla.mozilla.org/show_bug.cgi?id=834526
https://bugzilla.mozilla.org/show_bug.cgi?id=837007
https://bugzilla.mozilla.org/show_bug.cgi?id=837324
https://bugzilla.mozilla.org/show_bug.cgi?id=843434
https://bugzilla.mozilla.org/show_bug.cgi?id=854001
https://bugzilla.mozilla.org/show_bug.cgi?id=855236
https://bugzilla.mozilla.org/show_bug.cgi?id=865948
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16493
Details
Source: MITRE
Published: 2013-05-16
Updated: 2017-09-19
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 10
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 10
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* versions up to 20.0.1 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 75014 | openSUSE Security Update : xulrunner (openSUSE-SU-2013:0929-1) | Nessus | SuSE Local Security Checks | critical |
| 75013 | openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:0894-1) | Nessus | SuSE Local Security Checks | critical |
| 75009 | openSUSE Security Update : MozillaFirefox (openSUSE-SU-2013:0946-1) | Nessus | SuSE Local Security Checks | critical |
| 68949 | SuSE 11.3 Security Update : Mozilla Firefox (SAT Patch Number 8001) | Nessus | SuSE Local Security Checks | critical |
| 801267 | Mozilla Firefox 20.x <= 20 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | medium |
| 6828 | Mozilla Firefox < 21.0 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | high |
| 66480 | Firefox < 21.0 Multiple Vulnerabilities | Nessus | Windows | critical |
| 66476 | Firefox < 21.0 Multiple Vulnerabilities (Mac OS X) | Nessus | MacOS X Local Security Checks | critical |
| 66455 | FreeBSD : mozilla -- multiple vulnerabilities (4a1ca8a4-bd82-11e2-b7a0-d43d7e0c7c02) | Nessus | FreeBSD Local Security Checks | critical |
| 66443 | Ubuntu 12.04 LTS / 12.10 / 13.04 : thunderbird vulnerabilities (USN-1823-1) | Nessus | Ubuntu Local Security Checks | critical |
| 66442 | Ubuntu 12.04 LTS / 12.10 / 13.04 : firefox vulnerabilities (USN-1822-1) | Nessus | Ubuntu Local Security Checks | critical |