CVE-2015-2713

MEDIUM

Description

Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a document containing crafted text in conjunction with a Cascading Style Sheets (CSS) token sequence containing properties related to vertical text.

References

http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00054.html

http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html

http://rhn.redhat.com/errata/RHSA-2015-0988.html

http://rhn.redhat.com/errata/RHSA-2015-1012.html

http://www.debian.org/security/2015/dsa-3260

http://www.debian.org/security/2015/dsa-3264

http://www.mozilla.org/security/announce/2015/mfsa2015-51.html

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://www.securityfocus.com/bid/74611

http://www.ubuntu.com/usn/USN-2602-1

http://www.ubuntu.com/usn/USN-2603-1

https://bugzilla.mozilla.org/show_bug.cgi?id=1153478

https://security.gentoo.org/glsa/201605-06

https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.7

Details

Source: MITRE

Published: 2015-05-14

Updated: 2018-10-30

Risk Information

CVSS v2.0

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0:*:*:*:*:*:*:*

cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:*:*:*:*:*:*:*

cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:12.0:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* versions up to 37.0.2 (inclusive)

Configuration 3

OR

cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* versions up to 31.5 (inclusive)

Configuration 4

OR

cpe:2.3:a:mozilla:firefox_esr:31.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.1.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.3.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.5.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.5.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.5.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:31.6.0:*:*:*:*:*:*:*

Tenable Plugins

View all (27 total)

IDNameProductFamilySeverity
701255Mozilla Firefox ESR < 31.7 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
91379GLSA-201605-06 : Mozilla Products: Multiple vulnerabilities (Logjam) (SLOTH)NessusGentoo Local Security Checks
critical
8868Mozilla Thunderbird < 31.7 Multiple VulnerabilitiesNessus Network MonitorSMTP Clients
critical
8865Mozilla Firefox < 38.0 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
83947SUSE SLED11 / SLES11 Security Update : MozillaFirefox (SUSE-SU-2015:0978-1)NessusSuSE Local Security Checks
high
83870SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2015:0960-1)NessusSuSE Local Security Checks
high
83801openSUSE Security Update : MozillaFirefox (openSUSE-2015-375)NessusSuSE Local Security Checks
critical
83800openSUSE Security Update : MozillaThunderbird (openSUSE-2015-374)NessusSuSE Local Security Checks
critical
83547Debian DSA-3264-1 : icedove - security updateNessusDebian Local Security Checks
high
83544Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : thunderbird vulnerabilities (USN-2603-1)NessusUbuntu Local Security Checks
high
83538Scientific Linux Security Update : thunderbird on SL5.x, SL6.x, SL7.x i386/x86_64 (20150518)NessusScientific Linux Local Security Checks
high
83537RHEL 5 / 6 / 7 : thunderbird (RHSA-2015:1012)NessusRed Hat Local Security Checks
critical
83535Oracle Linux 6 / 7 : thunderbird (ELSA-2015-1012)NessusOracle Linux Local Security Checks
critical
83530CentOS 5 / 6 / 7 : thunderbird (CESA-2015:1012)NessusCentOS Local Security Checks
critical
83464Mozilla Thunderbird < 31.7 Multiple VulnerabilitiesNessusWindows
critical
83463Mozilla Thunderbird < 31.7 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
high
83450Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (20150512)NessusScientific Linux Local Security Checks
high
83439Firefox < 38.0 Multiple VulnerabilitiesNessusWindows
critical
83438Firefox ESR 31.x < 31.7 Multiple VulnerabilitiesNessusWindows
critical
83437Firefox < 38.0 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
high
83436Firefox ESR 31.x < 31.7 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
high
83434Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : firefox vulnerabilities (USN-2602-1)NessusUbuntu Local Security Checks
high
83423Debian DSA-3260-1 : iceweasel - security updateNessusDebian Local Security Checks
critical
83409RHEL 5 / 6 / 7 : firefox (RHSA-2015:0988)NessusRed Hat Local Security Checks
high
83403Oracle Linux 5 / 6 / 7 : firefox (ELSA-2015-0988)NessusOracle Linux Local Security Checks
high
83389FreeBSD : mozilla -- multiple vulnerabilities (d9b43004-f5fd-4807-b1d7-dbf66455b244)NessusFreeBSD Local Security Checks
critical
83378CentOS 5 / 6 / 7 : firefox (CESA-2015:0988)NessusCentOS Local Security Checks
high