CVE-2013-1738

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2013-1738
Use-after-free vulnerability in the JS_GetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and frame-chain restoration.

9.3 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://lists.fedoraproject.org/pipermail/package-announce/2013-September/115907.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-September/116610.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-September/117526.html
http://lists.opensuse.org/opensuse-updates/2013-09/msg00055.html
http://lists.opensuse.org/opensuse-updates/2013-09/msg00057.html
http://lists.opensuse.org/opensuse-updates/2013-09/msg00059.html
http://lists.opensuse.org/opensuse-updates/2013-09/msg00061.html
http://www.mozilla.org/security/announce/2013/mfsa2013-92.html Vendor Advisory
http://www.securityfocus.com/bid/62466
http://www.ubuntu.com/usn/USN-1951-1
http://www.ubuntu.com/usn/USN-1952-1
https://bugzilla.mozilla.org/show_bug.cgi?id=882897
https://bugzilla.mozilla.org/show_bug.cgi?id=887334
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18766
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:rc1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:rc2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.10:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.10:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.10:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.10.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.11:beta6:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12:beta6:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13:beta6:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.13.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.14:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.14:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.14:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.14:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.14:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.14:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15:beta6:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.15.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.16.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.17:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.17:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.17:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.17:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.17:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.17.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.18:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.18:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.18:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.18:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.19:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.19:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.19:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.20:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.20:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.20:beta3:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:17.0.8:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:20.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:21.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:22.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:23.0:*:*:*:*:*:*:*
History

No history.

Information

Published : 2013-09-18 10:08

Updated : 2017-09-19 01:36

NVD link : CVE-2013-1738

Mitre link : CVE-2013-1738

CVE.ORG link : CVE-2013-1738

JSON object : View

Products Affected

mozilla

  • firefox
  • thunderbird
  • seamonkey
CWE
CWE-399

Resource Management Errors