Lucene search

K

[email protected]NVD:CVE-2013-0779

HistoryFeb 19, 2013 - 11:55 p.m.

CVE-2013-0779

2013-02-1923:55:01

CWE-125

[email protected]

web.nvd.nist.gov

1

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.9%

The nsCodingStateMachine::NextState function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via unspecified vectors.

Affected configurations

NVD

Node

mozillafirefoxRange<19.0

OR

mozillafirefox_esrRange<17.0.3

OR

mozillaseamonkeyRange<2.16

OR

mozillathunderbirdRange<17.0.3

OR

mozillathunderbird_esrRange<17.0.3

Node

opensuseopensuseMatch11.4

OR

opensuseopensuseMatch12.1

OR

opensuseopensuseMatch12.2

Node

canonicalubuntu_linuxMatch10.04-

OR

canonicalubuntu_linuxMatch11.10

OR

canonicalubuntu_linuxMatch12.04esm

OR

canonicalubuntu_linuxMatch12.10

References

lists.opensuse.org/opensuse-security-announce/2013-02/msg00017.html

lists.opensuse.org/opensuse-updates/2013-02/msg00062.html

www.mozilla.org/security/announce/2013/mfsa2013-28.html

www.ubuntu.com/usn/USN-1729-1

www.ubuntu.com/usn/USN-1729-2

www.ubuntu.com/usn/USN-1748-1

bugzilla.mozilla.org/show_bug.cgi?id=801330

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16747

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.9%

Related for NVD:CVE-2013-0779

cvelist1 ubuntucve1 cve1 prion1 mozilla1 openvas30 nessus16 suse1 securityvulns1 ubuntu3 gentoo1