4.3

CVE-2013-1728

The IonMonkey JavaScript engine in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21, when Valgrind mode is used, does not properly initialize memory, which makes it easier for remote attackers to obtain sensitive information via unspecified vectors.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaSeamonkey Version <= 2.20
MozillaSeamonkey Version2.0
MozillaSeamonkey Version2.0 Updatealpha_1
MozillaSeamonkey Version2.0 Updatealpha_2
MozillaSeamonkey Version2.0 Updatealpha_3
MozillaSeamonkey Version2.0 Updatebeta_1
MozillaSeamonkey Version2.0 Updatebeta_2
MozillaSeamonkey Version2.0 Updaterc1
MozillaSeamonkey Version2.0 Updaterc2
MozillaSeamonkey Version2.0.1
MozillaSeamonkey Version2.0.2
MozillaSeamonkey Version2.0.3
MozillaSeamonkey Version2.0.4
MozillaSeamonkey Version2.0.5
MozillaSeamonkey Version2.0.6
MozillaSeamonkey Version2.0.7
MozillaSeamonkey Version2.0.8
MozillaSeamonkey Version2.0.9
MozillaSeamonkey Version2.0.10
MozillaSeamonkey Version2.0.11
MozillaSeamonkey Version2.0.12
MozillaSeamonkey Version2.0.13
MozillaSeamonkey Version2.0.14
MozillaSeamonkey Version2.1
MozillaSeamonkey Version2.1 Updatealpha1
MozillaSeamonkey Version2.1 Updatealpha2
MozillaSeamonkey Version2.1 Updatealpha3
MozillaSeamonkey Version2.1 Updatebeta1
MozillaSeamonkey Version2.1 Updatebeta2
MozillaSeamonkey Version2.1 Updatebeta3
MozillaSeamonkey Version2.1 Updaterc1
MozillaSeamonkey Version2.1 Updaterc2
MozillaSeamonkey Version2.10
MozillaSeamonkey Version2.10 Updatebeta1
MozillaSeamonkey Version2.10 Updatebeta2
MozillaSeamonkey Version2.10 Updatebeta3
MozillaSeamonkey Version2.10.1
MozillaSeamonkey Version2.11
MozillaSeamonkey Version2.11 Updatebeta1
MozillaSeamonkey Version2.11 Updatebeta2
MozillaSeamonkey Version2.11 Updatebeta3
MozillaSeamonkey Version2.11 Updatebeta4
MozillaSeamonkey Version2.11 Updatebeta5
MozillaSeamonkey Version2.11 Updatebeta6
MozillaSeamonkey Version2.12
MozillaSeamonkey Version2.12 Updatebeta1
MozillaSeamonkey Version2.12 Updatebeta2
MozillaSeamonkey Version2.12 Updatebeta3
MozillaSeamonkey Version2.12 Updatebeta4
MozillaSeamonkey Version2.12 Updatebeta5
MozillaSeamonkey Version2.12 Updatebeta6
MozillaSeamonkey Version2.12.1
MozillaSeamonkey Version2.13
MozillaSeamonkey Version2.13 Updatebeta1
MozillaSeamonkey Version2.13 Updatebeta2
MozillaSeamonkey Version2.13 Updatebeta3
MozillaSeamonkey Version2.13 Updatebeta4
MozillaSeamonkey Version2.13 Updatebeta5
MozillaSeamonkey Version2.13 Updatebeta6
MozillaSeamonkey Version2.13.1
MozillaSeamonkey Version2.13.2
MozillaSeamonkey Version2.14
MozillaSeamonkey Version2.14 Updatebeta1
MozillaSeamonkey Version2.14 Updatebeta2
MozillaSeamonkey Version2.14 Updatebeta3
MozillaSeamonkey Version2.14 Updatebeta4
MozillaSeamonkey Version2.14 Updatebeta5
MozillaSeamonkey Version2.15
MozillaSeamonkey Version2.15 Updatebeta1
MozillaSeamonkey Version2.15 Updatebeta2
MozillaSeamonkey Version2.15 Updatebeta3
MozillaSeamonkey Version2.15 Updatebeta4
MozillaSeamonkey Version2.15 Updatebeta5
MozillaSeamonkey Version2.15 Updatebeta6
MozillaSeamonkey Version2.15.1
MozillaSeamonkey Version2.15.2
MozillaSeamonkey Version2.16
MozillaSeamonkey Version2.16 Updatebeta1
MozillaSeamonkey Version2.16 Updatebeta2
MozillaSeamonkey Version2.16 Updatebeta3
MozillaSeamonkey Version2.16 Updatebeta4
MozillaSeamonkey Version2.16 Updatebeta5
MozillaSeamonkey Version2.16.1
MozillaSeamonkey Version2.16.2
MozillaSeamonkey Version2.17
MozillaSeamonkey Version2.17 Updatebeta1
MozillaSeamonkey Version2.17 Updatebeta2
MozillaSeamonkey Version2.17 Updatebeta3
MozillaSeamonkey Version2.17 Updatebeta4
MozillaSeamonkey Version2.17.1
MozillaSeamonkey Version2.18 Updatebeta1
MozillaSeamonkey Version2.18 Updatebeta2
MozillaSeamonkey Version2.18 Updatebeta3
MozillaSeamonkey Version2.18 Updatebeta4
MozillaSeamonkey Version2.19
MozillaSeamonkey Version2.19 Updatebeta1
MozillaSeamonkey Version2.19 Updatebeta2
MozillaSeamonkey Version2.20 Updatebeta1
MozillaSeamonkey Version2.20 Updatebeta2
MozillaSeamonkey Version2.20 Updatebeta3
MozillaThunderbird Version <= 17.0.9
MozillaThunderbird Version17.0
MozillaThunderbird Version17.0.1
MozillaThunderbird Version17.0.2
MozillaThunderbird Version17.0.3
MozillaThunderbird Version17.0.4
MozillaThunderbird Version17.0.5
MozillaThunderbird Version17.0.6
MozillaThunderbird Version17.0.7
MozillaThunderbird Version17.0.8
MozillaFirefox Version <= 23.0.1
MozillaFirefox Version19.0
MozillaFirefox Version19.0.1
MozillaFirefox Version19.0.2
MozillaFirefox Version20.0
MozillaFirefox Version20.0.1
MozillaFirefox Version21.0
MozillaFirefox Version22.0
MozillaFirefox Version23.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.77% 0.725
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.