CVE-2013-0745

🗓️ 13 Jan 2013 20:00:00Reported by mozillaType

The AutoWrapperChanger class in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15 does not properly interact with garbage collection, which allows remote attackers to execute arbitrary code via a crafted HTML document referencing JavaScript objects

Reporter	Title	Published	Views	Family All 64
Tenable Nessus	Mozilla Firefox < 18.0 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	Mozilla Thunderbird < 17.0.2 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	SeaMonkey 2.14.x < 2.15 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	Mozilla Firefox 17.x <= 17 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	Mozilla Thunderbird 17.x < 17.0.2 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	Mozilla Firefox 17.x <= 17 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	Mozilla SeaMonkey 2.x <= 2.14 Multiple Vulnerabilities	15 Jan 201300:00	–	nessus
Tenable Nessus	FreeBSD : mozilla -- multiple vulnerabilities (a4ed6632-5aa9-11e2-8fcb-c8600054b392)	10 Jan 201300:00	–	nessus
Tenable Nessus	GLSA-201309-23 : Mozilla Products: Multiple vulnerabilities	28 Sep 201300:00	–	nessus
Tenable Nessus	Firefox ESR < 17.0.2 Multiple Vulnerabilities (Mac OS X)	15 Jan 201300:00	–	nessus

NVD

Node

mozilla firefoxRange<17.0.2

mozilla firefoxRange<18.0

mozilla seamonkeyRange<2.15

mozilla thunderbirdRange<17.0.2

mozilla thunderbird_esrRange<17.0.2

Node

opensuse opensuseMatch11.4

opensuse opensuseMatch12.1

opensuse opensuseMatch12.2

suse linux_enterprise_desktopMatch10sp4

suse linux_enterprise_desktopMatch11sp2

suse linux_enterprise_serverMatch10sp4

suse linux_enterprise_serverMatch11sp2-

suse linux_enterprise_serverMatch11sp2vmware

suse linux_enterprise_software_development_kitMatch10sp4

suse linux_enterprise_software_development_kitMatch11sp2

Node

canonical ubuntu_linuxMatch10.04-

canonical ubuntu_linuxMatch11.10

canonical ubuntu_linuxMatch12.04esm

canonical ubuntu_linuxMatch12.10

Source	Link
lists	www.lists.opensuse.org/opensuse-security-announce/2013-01/msg00006.html
bugzilla	www.bugzilla.mozilla.org/show_bug.cgi
lists	www.lists.opensuse.org/opensuse-security-announce/2013-01/msg00010.html
lists	www.lists.opensuse.org/opensuse-security-announce/2013-01/msg00007.html
oval	www.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17061
ubuntu	www.ubuntu.com/usn/USN-1681-2
lists	www.lists.opensuse.org/opensuse-security-announce/2013-01/msg00017.html
ubuntu	www.ubuntu.com/usn/USN-1681-1
ubuntu	www.ubuntu.com/usn/USN-1681-4
mozilla	www.mozilla.org/security/announce/2013/mfsa2013-08.html

29 Apr 2026 01:13Current

9.2High risk

Vulners AI Score9.2

CVSS 29.3

EPSS0.03154

CWE-94