Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:10865
HistoryJan 15, 2019 - 8:53 a.m.

Remote Code Execution (RCE)

2019-01-1508:53:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

firefox is vulnerable to remote code execution (RCE) attacks. The vulnerability exists due to a use-after-free vulnerability in the TableBackgroundPainter::TableBackgroundData::Destroy function in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an HTML document with a table containing many columns and column groups.

Related

cve 1
ubuntucve 1
prion 1
openvas 39
mozilla 1
cvelist 1
nessus 36
veracode 3
redhat 2
centos 2
oraclelinux 2
suse 7
freebsd 1
securityvulns 1
ubuntu 4
ibm 2
kitploit 1
gentoo 1
cve
cve
CVE-2013-0744
2013-01-13 20:55:00
ubuntucve
ubuntucve
CVE-2013-0744
2013-01-09 00:00:00
prion
prion
Design/Logic Flaw
2013-01-13 20:55:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-05) - Linux
2021-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities (Jan 2013) - Windows
2013-01-16 00:00:00
Mozilla Products Multiple Vulnerabilities January13 (Mac OS X)
2013-01-16 00:00:00
mozilla
mozilla
Use-after-free when displaying table with many columns and column groups — Mozilla
2013-01-08 00:00:00
cvelist
cvelist
CVE-2013-0744
2013-01-13 20:00:00
nessus
nessus
Oracle Linux 6 : thunderbird (ELSA-2013-0145)
2013-07-12 00:00:00
CentOS 5 / 6 : thunderbird (CESA-2013:0145)
2013-01-09 00:00:00
Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20130108)
2013-01-11 00:00:00
veracode
veracode
Memory Corruption
2019-05-02 04:45:41
Out-Of-Bounds Read
2019-05-02 04:45:40
Use-After-Free
2019-05-02 04:45:40
redhat
redhat
(RHSA-2013:0144) Critical: firefox security update
2013-01-08 00:00:00
(RHSA-2013:0145) Critical: thunderbird security update
2013-01-08 00:00:00
centos
centos
firefox, xulrunner security update
2013-01-09 05:51:05
thunderbird security update
2013-01-09 05:51:41
oraclelinux
oraclelinux
firefox security update
2013-01-08 00:00:00
thunderbird security update
2013-01-08 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2013-01-18 19:04:49
Security update for Mozilla Firefox (important)
2013-02-18 18:04:29
Security update for MozillaFirefox (important)
2013-02-13 23:04:32
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-01-08 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-01-10 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-01-09 00:00:00
Firefox regression
2013-01-22 00:00:00
Firefox regression
2013-02-05 00:00:00
ibm
ibm
Security Bulletin: Storwize V7000 Unified Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:10865
cve1ubuntucve1prion1openvas39mozilla1cvelist1nessus36veracode3redhat2centos2oraclelinux2suse7freebsd1securityvulns1ubuntu4ibm2kitploit1gentoo1