9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
High
0.028 Low
EPSS
Percentile
90.7%
Integer overflow in the drawLineLoop function in the libGLESv2 library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox before 24.0 and SeaMonkey before 2.21, allows remote attackers to execute arbitrary code via a crafted web site.
lists.fedoraproject.org/pipermail/package-announce/2013-September/115907.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/116610.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/117526.html
lists.opensuse.org/opensuse-updates/2013-09/msg00055.html
lists.opensuse.org/opensuse-updates/2013-09/msg00057.html
lists.opensuse.org/opensuse-updates/2013-09/msg00061.html
www.mozilla.org/security/announce/2013/mfsa2013-78.html
www.ubuntu.com/usn/USN-1951-1
www.ubuntu.com/usn/USN-1952-1
bugzilla.mozilla.org/show_bug.cgi?id=890277
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18993