Vulnerability Details : CVE-2013-0783
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Vulnerability category: Memory CorruptionExecute codeDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2013-0783
Probability of exploitation activity in the next 30 days: 1.51%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 85 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-0783
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
[email protected] |
References for CVE-2013-0783
-
https://bugzilla.mozilla.org/show_bug.cgi?id=826471
Issue Tracking;Patch;Vendor Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16219
Third Party Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=830975
Issue Tracking;Patch;Vendor Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=761448
Issue Tracking;Patch;Vendor Advisory
-
http://www.ubuntu.com/usn/USN-1729-2
Third Party Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=818241
Issue Tracking;Patch;Vendor Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=780549
Issue Tracking;Patch;Vendor Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=830399
Issue Tracking;Patch;Vendor Advisory
-
http://www.ubuntu.com/usn/USN-1729-1
Third Party Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=690970
Issue Tracking;Patch;Vendor Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=822858
Issue Tracking;Patch;Vendor Advisory
-
http://www.mozilla.org/security/announce/2013/mfsa2013-21.html
Vendor Advisory
-
http://rhn.redhat.com/errata/RHSA-2013-0271.html
Third Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2013-02/msg00062.html
Third Party Advisory
-
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00017.html
Third Party Advisory
-
http://www.debian.org/security/2013/dsa-2699
Third Party Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=812380
Issue Tracking;Patch;Vendor Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=832162
Issue Tracking;Patch;Vendor Advisory
-
http://rhn.redhat.com/errata/RHSA-2013-0272.html
Third Party Advisory
-
http://www.ubuntu.com/usn/USN-1748-1
Third Party Advisory
Products affected by CVE-2013-0783
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:5.9:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_aus:5.9:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:thunderbird_esr:*:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
- cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*