10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
firefox is vulnerable to denial of service (DoS) attacks. The vulnerability exists as multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
www.debian.org/security/2013/dsa-2735
www.debian.org/security/2013/dsa-2746
www.mozilla.org/security/announce/2013/mfsa2013-63.html
www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
www.securityfocus.com/bid/61874
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=880734
bugzilla.mozilla.org/show_bug.cgi?id=888107
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18514
rhn.redhat.com/errata/RHSA-2013-1140.html