CVE-2013-1704

Severity

Theme

CVE-2013-1704

HIGH

New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Use-after-free vulnerability in the nsINode::GetParentNode function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via vectors involving a DOM modification at the time of a SetBody mutation event.

ID	Name	Product	Family	Severity
75122	openSUSE Security Update : MozillaFirefox / MozillaThunderbird / mozilla-nspr / etc (openSUSE-SU-2013:1348-1)	Nessus	SuSE Local Security Checks	critical
70183	GLSA-201309-23 : Mozilla Products: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
69278	FreeBSD : mozilla -- multiple vulnerabilities (0998e79d-0055-11e3-905b-0025905a4771)	Nessus	FreeBSD Local Security Checks	critical
801463	Mozilla Firefox < 23.0 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	medium
801462	Mozilla SeaMonkey < 2.20 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	medium
6978	Mozilla Firefox < 23.0 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
6977	SeaMonkey < 2.20 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
69272	SeaMonkey < 2.20 Multiple Vulnerabilities	Nessus	Windows	critical
69270	Mozilla Thunderbird < 17.0.8 Multiple Vulnerabilities	Nessus	Windows	critical
69269	Firefox < 23.0 Multiple Vulnerabilities	Nessus	Windows	critical
69266	Thunderbird < 17.0.8 Multiple Vulnerabilities (Mac OS X)	Nessus	MacOS X Local Security Checks	critical
69265	Firefox < 23.0 Multiple Vulnerabilities (Mac OS X)	Nessus	MacOS X Local Security Checks	critical
69235	Ubuntu 12.04 LTS / 12.10 / 13.04 : ubufox, unity-firefox-extension update (USN-1924-2)	Nessus	Ubuntu Local Security Checks	critical
69234	Ubuntu 12.04 LTS / 12.10 / 13.04 : firefox vulnerabilities (USN-1924-1)	Nessus	Ubuntu Local Security Checks	critical

CVE-2013-1704

HIGH

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

Vulnerable Software

Configuration 1

Configuration 2

Tenable Plugins

critical

critical

critical

medium

medium

high

high

critical

critical

critical

critical

critical

critical

critical