1. Home
  2. Vulnerabilities
  3. CVE-2013-1677

CVE-2013-1677

CVSS v2.0 10 (High)
100% Progress
EPSS 9.05 % (95th)
9.05% Progress
Affected Products 4
Advisories 10
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via unspecified vectors.

Weaknesses
CWE-399
Resource Management Errors
CVE Status
PUBLISHED
CNA
Mozilla Corporation
Published Date
2013-05-16 11:45:30
(11 years ago)
Updated Date
2017-09-19 01:36:10
(7 years ago)

Affected Products

Mozilla

Configuration #1

    CPE23 From Up To
  Mozilla Firefox 20.0.1 and prior versions cpe:2.3:a:mozilla:firefox <= 20.0.1
  Mozilla Firefox 19.0 cpe:2.3:a:mozilla:firefox:19.0
  Mozilla Firefox 19.0.1 cpe:2.3:a:mozilla:firefox:19.0.1
  Mozilla Firefox 19.0.2 cpe:2.3:a:mozilla:firefox:19.0.2
  Mozilla Firefox 20.0 cpe:2.3:a:mozilla:firefox:20.0

Configuration #2

    CPE23 From Up To
  Mozilla Firefox Esr 17.0 cpe:2.3:a:mozilla:firefox_esr:17.0
  Mozilla Firefox Esr 17.0.1 cpe:2.3:a:mozilla:firefox_esr:17.0.1
  Mozilla Firefox Esr 17.0.2 cpe:2.3:a:mozilla:firefox_esr:17.0.2
  Mozilla Firefox Esr 17.0.3 cpe:2.3:a:mozilla:firefox_esr:17.0.3
  Mozilla Firefox Esr 17.0.4 cpe:2.3:a:mozilla:firefox_esr:17.0.4
  Mozilla Firefox Esr 17.0.5 cpe:2.3:a:mozilla:firefox_esr:17.0.5

Configuration #3

    CPE23 From Up To
  Mozilla Thunderbird 17.0.5 and prior versions cpe:2.3:a:mozilla:thunderbird <= 17.0.5
  Mozilla Thunderbird 17.0 cpe:2.3:a:mozilla:thunderbird:17.0
  Mozilla Thunderbird 17.0.1 cpe:2.3:a:mozilla:thunderbird:17.0.1
  Mozilla Thunderbird 17.0.2 cpe:2.3:a:mozilla:thunderbird:17.0.2
  Mozilla Thunderbird 17.0.3 cpe:2.3:a:mozilla:thunderbird:17.0.3
  Mozilla Thunderbird 17.0.4 cpe:2.3:a:mozilla:thunderbird:17.0.4

Configuration #4

    CPE23 From Up To
  Mozilla Thunderbird Esr 17.0 cpe:2.3:a:mozilla:thunderbird_esr:17.0
  Mozilla Thunderbird Esr 17.0.1 cpe:2.3:a:mozilla:thunderbird_esr:17.0.1
  Mozilla Thunderbird Esr 17.0.2 cpe:2.3:a:mozilla:thunderbird_esr:17.0.2
  Mozilla Thunderbird Esr 17.0.3 cpe:2.3:a:mozilla:thunderbird_esr:17.0.3
  Mozilla Thunderbird Esr 17.0.4 cpe:2.3:a:mozilla:thunderbird_esr:17.0.4
  Mozilla Thunderbird Esr 17.0.5 cpe:2.3:a:mozilla:thunderbird_esr:17.0.5