Lucene search
Mozilla FoundationMFSA2013-47HistoryMay 14, 2013 - 12:00 a.m.
Uninitialized functions in DOMSVGZoomEvent — Mozilla
2013-05-1400:00:00
Mozilla Foundation
www.mozilla.org
22
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
74.0%
Mozilla community member Ms2ger discovered that some DOMSVGZoomEvent functions are used without being properly initialized, causing uninitialized memory to be used when they are called by web content. This could lead to a information leakage to sites depending on the contents of this uninitialized memory.
Affected configurations
Node
mozillafirefoxRange<21
ORmozillafirefox_esrRange<17.0.6
ORmozillathunderbirdRange<17.0.6
ORmozillathunderbird_esrRange<17.0.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox | lt | 21 | |
| firefox esr | lt | 17.0.6 | |
| thunderbird | lt | 17.0.6 | |
| thunderbird esr | lt | 17.0.6 |
Related
prion
prion
Design/Logic Flaw
2013-05-16 11:45:00
cve
cve
CVE-2013-1675
2013-05-16 11:45:30
attackerkb
attackerkb
CVE-2013-1675
2013-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2013-1675
2013-05-14 00:00:00
cisa_kev
cisa_kev
Mozilla Firefox Information Disclosure Vulnerability
2022-03-03 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-47) - Linux
2021-11-11 00:00:00
Oracle: Security Advisory (ELSA-2013-0820)
2015-10-06 00:00:00
CentOS Update for thunderbird CESA-2013:0821 centos5
2013-05-17 00:00:00
cvelist
cvelist
CVE-2013-1675
2013-05-16 10:00:00
nvd
nvd
CVE-2013-1675
2013-05-16 11:45:30
nessus
nessus
Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20130514)
2013-05-16 00:00:00
Oracle Linux 5 / 6 : firefox (ELSA-2013-0820)
2013-07-12 00:00:00
centos
centos
thunderbird security update
2013-05-14 22:42:14
firefox, xulrunner security update
2013-05-14 22:39:45
veracode
veracode
Out-Of-Bounds Read
2019-05-02 04:54:42
Out-Of-Bounds Read
2019-05-02 04:54:42
Information Disclosure
2019-05-02 04:54:41
oraclelinux
oraclelinux
firefox security update
2013-05-14 00:00:00
thunderbird security update
2013-05-14 00:00:00
redhat
redhat
(RHSA-2013:0821) Important: thunderbird security update
2013-05-14 00:00:00
(RHSA-2013:0820) Critical: firefox security update
2013-05-14 00:00:00
suse
suse
xulrunner to 17.0.6esr (important)
2013-06-10 18:05:12
MozillaThunderbird: update to 17.0.6 (important)
2013-05-27 17:05:02
MozillaFirefox: update to version 21.0 (important)
2013-06-10 18:13:40
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-05-14 00:00:00
Firefox vulnerabilities
2013-05-14 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-05-14 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-07-10 00:00:00
debian
debian
[SECURITY] [DSA 2699-1] iceweasel security update
2013-06-02 16:37:13
ibm
ibm
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
74.0%
Related for MFSA2013-47