CVE-2013-0801

Published: May 16, 2013Modified: Apr 29, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Affected (23)

Products: Mozilla: Firefox, Thunderbird, Thunderbird Esr

3 products

Thunderbird Esr

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Mozilla Firefox	Up to 20.0.1
Mozilla Firefox	Version 19.0.1
Mozilla Firefox	Version 19.0.2
Mozilla Firefox	Version 19.0
Mozilla Firefox	Version 20.0

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
Mozilla Firefox	Version 17.0.1
Mozilla Firefox	Version 17.0.2
Mozilla Firefox	Version 17.0.3
Mozilla Firefox	Version 17.0.4
Mozilla Firefox	Version 17.0.5
Mozilla Firefox	Version 17.0

Configuration C

6 vulnerable

Vulnerable Software	Affected Versions
Mozilla Thunderbird	Up to 17.0.5
Mozilla Thunderbird	Version 17.0.1
Mozilla Thunderbird	Version 17.0.2
Mozilla Thunderbird	Version 17.0.3
Mozilla Thunderbird	Version 17.0.4
Mozilla Thunderbird	Version 17.0

Configuration D

6 vulnerable

Vulnerable Software	Affected Versions
Mozilla Thunderbird Esr	Version 17.0.1
Mozilla Thunderbird Esr	Version 17.0.2
Mozilla Thunderbird Esr	Version 17.0.3
Mozilla Thunderbird Esr	Version 17.0.4
Mozilla Thunderbird Esr	Version 17.0.5
Mozilla Thunderbird Esr	Version 17.0

References (40)

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00010.html

Source: security@mozilla.org

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00011.html

Source: security@mozilla.org

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00012.html

Source: security@mozilla.org

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00006.html

Source: security@mozilla.org

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00008.html

Source: security@mozilla.org

http://rhn.redhat.com/errata/RHSA-2013-0820.html

Source: security@mozilla.org

http://rhn.redhat.com/errata/RHSA-2013-0821.html

Source: security@mozilla.org

http://www.debian.org/security/2013/dsa-2699

Source: security@mozilla.org

http://www.mandriva.com/security/advisories?name=MDVSA-2013:165

Source: security@mozilla.org

http://www.mozilla.org/security/announce/2013/mfsa2013-41.html

Source: security@mozilla.org

Vendor Advisory

http://www.securityfocus.com/bid/59855

Source: security@mozilla.org

http://www.ubuntu.com/usn/USN-1822-1

Source: security@mozilla.org

http://www.ubuntu.com/usn/USN-1823-1

Source: security@mozilla.org

https://bugzilla.mozilla.org/show_bug.cgi?id=787283

Source: security@mozilla.org

https://bugzilla.mozilla.org/show_bug.cgi?id=808402

Source: security@mozilla.org

https://bugzilla.mozilla.org/show_bug.cgi?id=849597

Source: security@mozilla.org

https://bugzilla.mozilla.org/show_bug.cgi?id=852315

Source: security@mozilla.org

https://bugzilla.mozilla.org/show_bug.cgi?id=864558

Source: security@mozilla.org

https://bugzilla.mozilla.org/show_bug.cgi?id=866544

Source: security@mozilla.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17062

Source: security@mozilla.org

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00010.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00011.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00012.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00008.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2013-0820.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2013-0821.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2013/dsa-2699

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2013:165

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mozilla.org/security/announce/2013/mfsa2013-41.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/59855

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1822-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1823-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=787283

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=808402

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=849597

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=852315

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=864558

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=866544

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17062

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.