CVE-2013-0749

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.1, and SeaMonkey before 2.15 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00006.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00007.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00010.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00017.html	Mailing List Third Party Advisory
http://www.mozilla.org/security/announce/2013/mfsa2013-01.html	Vendor Advisory
http://www.palemoon.org/releasenotes-ng.shtml	Broken Link
http://www.ubuntu.com/usn/USN-1681-1	Third Party Advisory
http://www.ubuntu.com/usn/USN-1681-2	Third Party Advisory
http://www.ubuntu.com/usn/USN-1681-4	Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=785358	Issue Tracking Patch Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=794426	Issue Tracking Patch Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=805745	Exploit Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=805814	Exploit Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=808481	Issue Tracking Patch Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=812847	Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=814407	Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=814839	Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=816994	Issue Tracking Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16953	Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00006.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00007.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00010.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00017.html	Mailing List Third Party Advisory
http://www.mozilla.org/security/announce/2013/mfsa2013-01.html	Vendor Advisory
http://www.palemoon.org/releasenotes-ng.shtml	Broken Link
http://www.ubuntu.com/usn/USN-1681-1	Third Party Advisory
http://www.ubuntu.com/usn/USN-1681-2	Third Party Advisory
http://www.ubuntu.com/usn/USN-1681-4	Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=785358	Issue Tracking Patch Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=794426	Issue Tracking Patch Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=805745	Exploit Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=805814	Exploit Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=808481	Issue Tracking Patch Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=812847	Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=814407	Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=814839	Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=816994	Issue Tracking Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16953	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mozilla:firefox::::::::
	cpe:2.3:a:mozilla:firefox::::::::
	cpe:2.3:a:mozilla:firefox::::::::
	cpe:2.3:a:mozilla:seamonkey::::::::
	cpe:2.3:a:mozilla:thunderbird::::::::
	cpe:2.3:a:mozilla:thunderbird_esr::::::::
	cpe:2.3:a:mozilla:thunderbird_esr::::::::

Configuration 2 (hide)

OR	cpe:2.3:o:opensuse:opensuse:11.4:::::::*
	cpe:2.3:o:opensuse:opensuse:12.1:::::::*
	cpe:2.3:o:opensuse:opensuse:12.2:::::::*
	cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2::::::
	cpe:2.3:o:suse:linux_enterprise_server:10:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_server:11:sp2::::-::*
	cpe:2.3:o:suse:linux_enterprise_server:11:sp2::::vmware::*
	cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2::::::

Configuration 3 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
	cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:12.04::::esm:::
	cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::*

History

21 Nov 2024, 01:48

21 Oct 2024, 13:55

Type	Values Removed	Values Added
CPE	cpe:2.3:a:mozilla:firefox_esr::::::::

Information

Published : 2013-01-13 20:55

Updated : 2024-11-21 01:48

NVD link : CVE-2013-0749

Mitre link : CVE-2013-0749

CVE.ORG link : CVE-2013-0749

JSON object : View

Products Affected

mozilla

thunderbird
firefox
seamonkey
thunderbird_esr

suse

linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_server

canonical

ubuntu_linux

opensuse

opensuse

CWE

NVD-CWE-noinfo

9.3 /10