Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_FIREFOX_24.NASL
HistorySep 19, 2013 - 12:00 a.m.

Firefox < 24.0 Multiple Vulnerabilities (Mac OS X)

2013-09-1900:00:00
This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.174 Low

EPSS

Percentile

96.1%

JSON

The installed version of Firefox is earlier than 24.0 and is, therefore, potentially affected by multiple vulnerabilities :

  • Memory issues exist in the browser engine that could allow for denial of service or arbitrary code execution.
    (CVE-2013-1718, CVE-2013-1719)

  • The HTML5 Tree Builder does not properly maintain states, which could result in a denial of service or possible arbitrary code execution. (CVE-2013-1720)

  • The ANGLE library is vulnerable to an integer overflow, which could result in a denial of service or arbitrary code execution. (CVE-2013-1721)

  • Multiple use-after-free problems exist, which could result in denial of service attacks or arbitrary code execution. (CVE-2013-1722, CVE-2013-1724, CVE-2013-1735, CVE-2013-1736, CVE-2013-1738)

  • The NativeKey widget does not properly terminate key messages, possibly leading to a denial of service attack.
    (CVE-2013-1723)

  • Incorrect scope handling for JavaScript objects with compartments can result in denial of service or possibly arbitrary code execution. (CVE-2013-1725)

  • Local users can gain the same privileges as the Mozilla Updater because the application does not ensure exclusive access to the update file. An attacker can exploit this by inserting a malicious file into the update file. (CVE-2013-1726)

  • Sensitive information can be obtained via unspecified vectors because the IonMonkey JavaScript does not properly initialize memory. (CVE-2013-1728)

  • A JavaScript compartment mismatch can result in a denial of service or arbitrary code execution. Versions of Firefox 20 or greater are not susceptible to the arbitrary code execution mentioned above.
    (CVE-2013-1730)

  • A buffer overflow is possible because of an issue with multi-column layouts. (CVE-2013-1732)

  • An object is not properly identified during use of user-defined getter methods on DOM proxies. This can result in access restrictions being bypassed.
    (CVE-2013-1737)

  • An issue in the NVIDIA OS X graphic drivers allows the user’s desktop to be viewed by web content, potentially exposing sensitive information. (CVE-2013-1729)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(69989);
  script_version("1.11");
  script_cvs_date("Date: 2019/11/27");

  script_cve_id(
    "CVE-2013-1718",
    "CVE-2013-1719",
    "CVE-2013-1720",
    "CVE-2013-1721",
    "CVE-2013-1722",
    "CVE-2013-1723",
    "CVE-2013-1724",
    "CVE-2013-1725",
    "CVE-2013-1726",
    "CVE-2013-1728",
    "CVE-2013-1729",
    "CVE-2013-1730",
    "CVE-2013-1732",
    "CVE-2013-1735",
    "CVE-2013-1736",
    "CVE-2013-1737",
    "CVE-2013-1738"
  );
  script_bugtraq_id(
    62460,
    62462,
    62463,
    62464,
    62465,
    62466,
    62467,
    62468,
    62469,
    62470,
    62472,
    62473,
    62474,
    62475,
    62478,
    62479,
    62482
  );

  script_name(english:"Firefox < 24.0 Multiple Vulnerabilities (Mac OS X)");
  script_summary(english:"Checks version of Firefox");

  script_set_attribute(attribute:"synopsis", value:
"The remote Mac OS X host contains a web browser that is potentially
affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The installed version of Firefox is earlier than 24.0 and is,
therefore, potentially affected by multiple vulnerabilities :

  - Memory issues exist in the browser engine that could
    allow for denial of service or arbitrary code execution.
    (CVE-2013-1718, CVE-2013-1719)

  - The HTML5 Tree Builder does not properly maintain
    states, which could result in a denial of service or
    possible arbitrary code execution.  (CVE-2013-1720)

  - The ANGLE library is vulnerable to an integer overflow,
    which could result in a denial of service or arbitrary
    code execution. (CVE-2013-1721)

  - Multiple use-after-free problems exist, which could
    result in denial of service attacks or arbitrary code
    execution. (CVE-2013-1722, CVE-2013-1724,
    CVE-2013-1735, CVE-2013-1736, CVE-2013-1738)

  - The NativeKey widget does not properly terminate key
    messages, possibly leading to a denial of service attack.
    (CVE-2013-1723)

  - Incorrect scope handling for JavaScript objects with
    compartments can result in denial of service or possibly
    arbitrary code execution. (CVE-2013-1725)

  - Local users can gain the same privileges as the Mozilla
    Updater because the application does not ensure
    exclusive access to the update file. An attacker can
    exploit this by inserting a malicious file into the
    update file. (CVE-2013-1726)

  - Sensitive information can be obtained via unspecified
    vectors because the IonMonkey JavaScript does not
    properly initialize memory. (CVE-2013-1728)

  - A JavaScript compartment mismatch can result in a denial
    of service or arbitrary code execution.  Versions of
    Firefox 20 or greater are not susceptible to the
    arbitrary code execution mentioned above.
    (CVE-2013-1730)

  - A buffer overflow is possible because of an issue with
    multi-column layouts. (CVE-2013-1732)

  - An object is not properly identified during use of
    user-defined getter methods on DOM proxies.  This can
    result in access restrictions being bypassed.
    (CVE-2013-1737)

  - An issue in the NVIDIA OS X graphic drivers allows the
    user's desktop to be viewed by web content, potentially
    exposing sensitive information. (CVE-2013-1729)");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-76/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-77/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-78/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-79/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-80/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-81/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-82/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-83/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-85/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-86/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-88/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-89/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-90/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-91/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2013-92/");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Firefox 24.0 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-1736");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/09/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/09/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/09/19");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:firefox");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_firefox_installed.nasl");
  script_require_keys("MacOSX/Firefox/Installed");

  exit(0);
}

include("mozilla_version.inc");

kb_base = "MacOSX/Firefox";
get_kb_item_or_exit(kb_base+"/Installed");

version = get_kb_item_or_exit(kb_base+"/Version", exit_code:1);
path = get_kb_item_or_exit(kb_base+"/Path", exit_code:1);

if (get_kb_item(kb_base + '/is_esr')) exit(0, 'The Mozilla Firefox installation is in the ESR branch.');

mozilla_check_version(product:'firefox', version:version, path:path, esr:FALSE, fix:'24.0', severity:SECURITY_HOLE, xss:FALSE);
VendorProductVersionCPE
mozillafirefoxcpe:/a:mozilla:firefox

References

Related

openvas 51
nessus 34
ubuntu 2
freebsd 1
securityvulns 1
oraclelinux 2
centos 2
veracode 7
debian 2
mageia 2
osv 2
redhat 2
suse 2
ibm 2
mozilla 14
nvd 15
cve 14
prion 14
cvelist 15
zdt 1
ubuntucve 13
seebug 1
openvas
openvas
Mozilla Thunderbird Multiple Vulnerabilities-01 (Sep 2013) - Mac OS X
2013-09-24 00:00:00
Mozilla Thunderbird Multiple Vulnerabilities-01 (Sep 2013) - Windows
2013-09-24 00:00:00
SeaMonkey Multiple Vulnerabilities-01 (Sep 2013) - Mac OS X
2013-09-24 00:00:00
nessus
nessus
Mozilla Firefox ESR < 17.0.9 Multiple Vulnerabilities
2019-11-06 00:00:00
Firefox < 24.0 Multiple Vulnerabilities
2013-09-19 00:00:00
Mozilla Thunderbird < 24.0
2013-09-18 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2013-09-17 00:00:00
Thunderbird vulnerabilities
2013-09-18 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-08-17 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-10-01 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2013-09-17 00:00:00
firefox security update
2013-09-17 00:00:00
centos
centos
firefox, xulrunner security update
2013-09-17 21:32:06
thunderbird security update
2013-09-17 21:34:04
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:52:21
Use-After-Free
2019-05-02 04:52:22
Arbitrary Code Execution
2019-05-02 04:52:21
debian
debian
[SECURITY] [DSA 2759-1] iceweasel security update
2013-09-18 13:39:15
[SECURITY] [DSA 2762-1] icedove security update
2013-09-23 15:41:12
mageia
mageia
Updated firefox and thunderbird packages fix security vulnerabilities
2013-09-19 13:49:58
Updated iceape packages fix many vulnerabilities
2013-11-21 00:16:49
osv
osv
iceweasel - several
2013-09-18 00:00:00
icedove - several
2013-09-23 00:00:00
redhat
redhat
(RHSA-2013:1268) Critical: firefox security update
2013-09-17 00:00:00
(RHSA-2013:1269) Important: thunderbird security update
2013-09-17 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2013-09-27 22:04:14
Mozilla Suite: Update to October 2013 release (important)
2013-11-07 10:04:11
ibm
ibm
Security Bulletin: IBM Scale Out Network Attached Storage V1.4.2.1 Includes Fixes for Multiple Vendor Security Vulnerabilities.
2022-09-26 04:23:14
Security Bulletin: IBM Storwize V7000 Unified V1.4.2.1 Includes Fixes for Multiple Vendor Security Vulnerabilities.
2022-09-26 04:23:14
mozilla
mozilla
Miscellaneous memory safety hazards (rv:24.0 / rv:17.0.9) β€” Mozilla
2013-09-17 00:00:00
Memory corruption involving scrolling β€” Mozilla
2013-09-17 00:00:00
Uninitialized data in IonMonkey β€” Mozilla
2013-09-17 00:00:00
nvd
nvd
CVE-2013-1728
2013-09-18 10:08:24
CVE-2013-1726
2013-09-18 10:08:24
CVE-2013-1718
2013-09-18 10:08:22
cve
cve
CVE-2013-1736
2013-09-18 10:08:24
CVE-2013-1718
2013-09-18 10:08:22
CVE-2013-1738
2013-09-18 10:08:24
prion
prion
Memory corruption
2013-09-18 10:08:00
Design/Logic Flaw
2013-09-18 10:08:00
Memory corruption
2013-09-18 10:08:00
cvelist
cvelist
CVE-2013-1736
2013-09-18 10:00:00
CVE-2013-1728
2013-09-18 10:00:00
CVE-2013-1724
2013-09-18 10:00:00
zdt
zdt
FireFox Use after Free Exploit
2013-11-30 00:00:00
ubuntucve
ubuntucve
CVE-2013-1724
2013-09-17 00:00:00
CVE-2013-1719
2013-09-18 00:00:00
CVE-2013-1732
2013-09-17 00:00:00
seebug
seebug
Mozilla Firefox/Thunderbird/SeaMonkey θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž(CVE-2013-1722)
2013-09-23 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.174 Low

EPSS

Percentile

96.1%

JSON
Related for MACOSX_FIREFOX_24.NASL
openvas51nessus34ubuntu2freebsd1securityvulns1oraclelinux2centos2veracode7debian2mageia2osv2redhat2suse2ibm2mozilla14nvd15cve14prion14cvelist15zdt1ubuntucve13seebug1