CVE-2013-1701

HIGH

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

http://www.debian.org/security/2013/dsa-2735

http://www.debian.org/security/2013/dsa-2746

http://www.mozilla.org/security/announce/2013/mfsa2013-63.html

http://www.securityfocus.com/bid/61874

https://bugzilla.mozilla.org/show_bug.cgi?id=880734

https://bugzilla.mozilla.org/show_bug.cgi?id=888107

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18514

Details

Source: MITRE

Published: 2013-08-07

Updated: 2017-09-19

Risk Information

CVSS v2.0

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH