CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
94.3%
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
mozilla | thunderbird_esr | 17.0 | cpe:2.3:a:mozilla:thunderbird_esr:17.0:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.1 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.1:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.2 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.2:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.3 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.3:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.4 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.4:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.5 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.5:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.6 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.6:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.7 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.7:*:*:*:*:*:*:* |
mozilla | thunderbird_esr | 17.0.8 | cpe:2.3:a:mozilla:thunderbird_esr:17.0.8:*:*:*:*:*:*:* |
mozilla | thunderbird | * | cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* |
lists.fedoraproject.org/pipermail/package-announce/2013-September/115907.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/116610.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/117526.html
lists.opensuse.org/opensuse-security-announce/2013-11/msg00005.html
lists.opensuse.org/opensuse-updates/2013-09/msg00055.html
lists.opensuse.org/opensuse-updates/2013-09/msg00057.html
lists.opensuse.org/opensuse-updates/2013-09/msg00059.html
lists.opensuse.org/opensuse-updates/2013-09/msg00060.html
lists.opensuse.org/opensuse-updates/2013-09/msg00061.html
rhn.redhat.com/errata/RHSA-2013-1268.html
rhn.redhat.com/errata/RHSA-2013-1269.html
www.debian.org/security/2013/dsa-2762
www.mozilla.org/security/announce/2013/mfsa2013-76.html
www.securityfocus.com/bid/62463
www.ubuntu.com/usn/USN-1951-1
www.ubuntu.com/usn/USN-1952-1
bugzilla.mozilla.org/show_bug.cgi?id=889193
bugzilla.mozilla.org/show_bug.cgi?id=897676
bugzilla.mozilla.org/show_bug.cgi?id=899022
bugzilla.mozilla.org/show_bug.cgi?id=901351
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18939