Lucene search
Ubuntu: Security Advisory (USN-1729-1)
🗓️ 22 Feb 2013 00:00:00Reported by Copyright (C) 2013 Greenbone AGType 
openvas🔗 plugins.openvas.org👁 18 Views
The 'firefox' package in Ubuntu is missing an update, causing multiple memory safety issues, out-of-bounds read vulnerabilities, and location exposure to JavaScript workers
Show more
| Reporter | Title | Published | Views | Family All 199 |
|---|---|---|---|---|
| Mozilla Thunderbird Multiple Vulnerabilities -01 Feb13 (Windows) | 21 Feb 201300:00 | – | openvas |
| Mozilla Thunderbird ESR Multiple Vulnerabilities -01 Feb13 (Windows) | 21 Feb 201300:00 | – | openvas |
| Mozilla Firefox Multiple Vulnerabilities -01 Feb13 (Windows) | 21 Feb 201300:00 | – | openvas |
| SeaMonkey Multiple Vulnerabilities -01 Feb13 (Windows) | 21 Feb 201300:00 | – | openvas |
| Mozilla Thunderbird Multiple Vulnerabilities -01 (Feb 2013) - Mac OS X | 21 Feb 201300:00 | – | openvas |
| Mozilla Firefox ESR Multiple Vulnerabilities -01 (Feb 2013) - Mac OS X | 21 Feb 201300:00 | – | openvas |
| Mozilla Firefox ESR Multiple Vulnerabilities -01 Feb13 (Mac OS X) | 21 Feb 201300:00 | – | openvas |
| Mozilla Firefox Multiple Vulnerabilities -01 (Feb 2013) - Mac OS X | 21 Feb 201300:00 | – | openvas |
| Ubuntu: Security Advisory (USN-1729-2) | 5 Mar 201300:00 | – | openvas |
| Mozilla Thunderbird ESR Multiple Vulnerabilities -01 (Feb 2013) - Mac OS X | 21 Feb 201300:00 | – | openvas |
10
| Source | Link |
|---|---|
| launchpad | www.launchpad.net/bugs/1128883 |
| ubuntu | www.ubuntu.com/security/notices/USN-1729-1 |
# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.841329");
script_cve_id("CVE-2013-0765", "CVE-2013-0772", "CVE-2013-0773", "CVE-2013-0774", "CVE-2013-0775", "CVE-2013-0776", "CVE-2013-0777", "CVE-2013-0778", "CVE-2013-0779", "CVE-2013-0780", "CVE-2013-0781", "CVE-2013-0782", "CVE-2013-0783", "CVE-2013-0784");
script_tag(name:"creation_date", value:"2013-02-22 04:42:50 +0000 (Fri, 22 Feb 2013)");
script_version("2024-02-02T05:06:04+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:04 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"9.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_name("Ubuntu: Security Advisory (USN-1729-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2013 Greenbone AG");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(10\.04\ LTS|11\.10|12\.04\ LTS|12\.10)");
script_xref(name:"Advisory-ID", value:"USN-1729-1");
script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-1729-1");
script_xref(name:"URL", value:"https://launchpad.net/bugs/1128883");
script_tag(name:"summary", value:"The remote host is missing an update for the 'firefox' package(s) announced via the USN-1729-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Olli Pettay, Christoph Diehl, Gary Kwong, Jesse Ruderman, Andrew McCreight,
Joe Drew, Wayne Mery, Alon Zakai, Christian Holler, Gary Kwong, Luke
Wagner, Terrence Cole, Timothy Nikkel, Bill McCloskey, and Nicolas Pierron
discovered multiple memory safety issues affecting Firefox. If the user
were tricked into opening a specially crafted page, an attacker could
possibly exploit these to cause a denial of service via application crash.
(CVE-2013-0783, CVE-2013-0784)
Atte Kettunen discovered that Firefox could perform an out-of-bounds read
while rendering GIF format images. An attacker could exploit this to crash
Firefox. (CVE-2013-0772)
Boris Zbarsky discovered that Firefox did not properly handle some wrapped
WebIDL objects. If the user were tricked into opening a specially crafted
page, an attacker could possibly exploit this to cause a denial of service
via application crash, or potentially execute code with the privileges of
the user invoking Firefox. (CVE-2013-0765)
Bobby Holley discovered vulnerabilities in Chrome Object Wrappers (COW) and
System Only Wrappers (SOW). If a user were tricked into opening a specially
crafted page, a remote attacker could exploit this to bypass security
protections to obtain sensitive information or potentially execute code
with the privileges of the user invoking Firefox. (CVE-2013-0773)
Frederik Braun discovered that Firefox made the location of the active
browser profile available to JavaScript workers. (CVE-2013-0774)
A use-after-free vulnerability was discovered in Firefox. An attacker could
potentially exploit this to execute code with the privileges of the user
invoking Firefox. (CVE-2013-0775)
Michal Zalewski discovered that Firefox would not always show the correct
address when cancelling a proxy authentication prompt. A remote attacker
could exploit this to conduct URL spoofing and phishing attacks.
(CVE-2013-0776)
Abhishek Arya discovered several problems related to memory handling. If
the user were tricked into opening a specially crafted page, an attacker
could possibly exploit these to cause a denial of service via application
crash, or potentially execute code with the privileges of the user invoking
Firefox. (CVE-2013-0777, CVE-2013-0778, CVE-2013-0779, CVE-2013-0780,
CVE-2013-0781, CVE-2013-0782)");
script_tag(name:"affected", value:"'firefox' package(s) on Ubuntu 10.04, Ubuntu 11.10, Ubuntu 12.04, Ubuntu 12.10.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "UBUNTU10.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"firefox", ver:"19.0+build1-0ubuntu0.10.04.1", rls:"UBUNTU10.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU11.10") {
if(!isnull(res = isdpkgvuln(pkg:"firefox", ver:"19.0+build1-0ubuntu0.11.10.1", rls:"UBUNTU11.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU12.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"firefox", ver:"19.0+build1-0ubuntu0.12.04.1", rls:"UBUNTU12.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU12.10") {
if(!isnull(res = isdpkgvuln(pkg:"firefox", ver:"19.0+build1-0ubuntu0.12.10.1", rls:"UBUNTU12.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo22 Feb 2013 00:00Current
9.8High risk
Vulners AI Score9.8
CVSS29.3
EPSS0.02889