CVE-2013-0762

CVSS v2.0 9.3 (High)

EPSS 1.86 % (89^th)

Affected Products 15

Advisories 11

Use-after-free vulnerability in the imgRequest::OnStopFrame function in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.1, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

Weaknesses

CWE-416: Use After Free

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2013-01-13 20:55:02
(11 years ago)
Updated Date: 2020-08-04 15:31:25
(4 years ago)

Affected Products

Canonical

Ubuntu Linux

Mozilla

Opensuse

Opensuse

Redhat

Suse

Configuration #1

	CPE23	From	Up To
Mozilla Firefox prior 18.0 version	cpe:2.3:a:mozilla:firefox		< 18.0
Mozilla Firefox Esr from 10.0 version and prior 10.0.12 version	cpe:2.3:a:mozilla:firefox_esr	>= 10.0	< 10.0.12
Mozilla Firefox Esr from 17.0 version and prior 17.0.2 version	cpe:2.3:a:mozilla:firefox_esr	>= 17.0	< 17.0.2
Mozilla Seamonkey prior 2.15 version	cpe:2.3:a:mozilla:seamonkey		< 2.15
Mozilla Thunderbird prior 17.0.2 version	cpe:2.3:a:mozilla:thunderbird		< 17.0.2
Mozilla Thunderbird Esr from 10.0 version and prior 10.0.12 version	cpe:2.3:a:mozilla:thunderbird_esr	>= 10.0	< 10.0.12
Mozilla Thunderbird Esr from 17.0 version and prior 17.0.2 version	cpe:2.3:a:mozilla:thunderbird_esr	>= 17.0	< 17.0.2

Configuration #2

		CPE23	From	Up To
	Opensuse 11.4	cpe:2.3:o:opensuse:opensuse:11.4
	Opensuse 12.1	cpe:2.3:o:opensuse:opensuse:12.1
	Opensuse 12.2	cpe:2.3:o:opensuse:opensuse:12.2
	Suse Linux Enterprise Desktop 10 SP4	cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4
	Suse Linux Enterprise Desktop 11 SP2	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2
	Suse Linux Enterprise Server 10 SP4	cpe:2.3:o:suse:linux_enterprise_server:10:sp4
	Suse Linux Enterprise Server 11 SP2 For	cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::*:-
	Suse Linux Enterprise Server 11 SP2 for Vmware	cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::*:vmware
	Suse Linux Enterprise Software Development Kit 10 SP4	cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4
	Suse Linux Enterprise Software Development Kit 11 SP2	cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2

Configuration #3

		CPE23	From	Up To
	Redhat Enterprise Linux Desktop 5.0	cpe:2.3:o:redhat:enterprise_linux_desktop:5.0
	Redhat Enterprise Linux Desktop 6.0	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
	Redhat Enterprise Linux Eus 5.9	cpe:2.3:o:redhat:enterprise_linux_eus:5.9
	Redhat Enterprise Linux Eus 6.3	cpe:2.3:o:redhat:enterprise_linux_eus:6.3
	Redhat Enterprise Linux Server 5.0	cpe:2.3:o:redhat:enterprise_linux_server:5.0
	Redhat Enterprise Linux Server 6.0	cpe:2.3:o:redhat:enterprise_linux_server:6.0
	Redhat Enterprise Linux Server Aus 5.9	cpe:2.3:o:redhat:enterprise_linux_server_aus:5.9
	Redhat Enterprise Linux Workstation 5.0	cpe:2.3:o:redhat:enterprise_linux_workstation:5.0
	Redhat Enterprise Linux Workstation 6.0	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0

Configuration #4

		CPE23	From	Up To
	Canonical Ubuntu Linux 10.04	cpe:2.3:o:canonical:ubuntu_linux:10.04:::*:-
	Canonical Ubuntu Linux 11.10	cpe:2.3:o:canonical:ubuntu_linux:11.10
	Canonical Ubuntu Linux 12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04:::*:esm
	Canonical Ubuntu Linux 12.10	cpe:2.3:o:canonical:ubuntu_linux:12.10