CVE-2013-0777

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 20-02-2013 12:55

Last modified: - 24-09-2022 03:03

Total changes: - 2

Description

Use-after-free vulnerability in the nsDisplayBoxShadowOuter::Paint function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:C/I:C/A:C

Low

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

9.3

Base score

8.6

10.0

Exploitability score

Impact score

Verification logic

Reference

http://www.mozilla.org/security/announce/2013/mfsa2013-28.html
https://bugzilla.mozilla.org/show_bug.cgi?id=798691
openSUSE-SU-2013:0324-Mailing List, Third Party Advisory
USN-1729-1-Third Party Advisory
USN-1748-1-Third Party Advisory
USN-1729-2-Third Party Advisory
openSUSE-SU-2013:0323-Mailing List, Third Party Advisory
oval:org.mitre.oval:def:16977-Third Party Advisory

Keywords

CVE-2013-0777

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2013-0777

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures