7.5

CVE-2013-5607

EPSS 1.59%
Published 20.11.2013 14:12:50
Last modified 11.04.2025 00:51:21
Source security@mozilla.org
Teams watchlist Login
Open Login

Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.

Affected products Warnungen 0 Metrics 2 CWE 0 References 19

Data is provided by the National Vulnerability Database (NVD)

Mozilla ≫ Netscape Portable Runtime Version <= 4.10.1

Mozilla ≫ Netscape Portable Runtime Version4.1.1

Mozilla ≫ Netscape Portable Runtime Version4.1.2

Mozilla ≫ Netscape Portable Runtime Version4.2

Mozilla ≫ Netscape Portable Runtime Version4.2.2

Mozilla ≫ Netscape Portable Runtime Version4.3

Mozilla ≫ Netscape Portable Runtime Version4.4.1

Mozilla ≫ Netscape Portable Runtime Version4.5.1

Mozilla ≫ Netscape Portable Runtime Version4.6

Mozilla ≫ Netscape Portable Runtime Version4.6.1

Mozilla ≫ Netscape Portable Runtime Version4.6.2

Mozilla ≫ Netscape Portable Runtime Version4.6.3

Mozilla ≫ Netscape Portable Runtime Version4.6.4

Mozilla ≫ Netscape Portable Runtime Version4.6.5

Mozilla ≫ Netscape Portable Runtime Version4.6.6

Mozilla ≫ Netscape Portable Runtime Version4.6.7

Mozilla ≫ Netscape Portable Runtime Version4.6.8

Mozilla ≫ Netscape Portable Runtime Version4.7

Mozilla ≫ Netscape Portable Runtime Version4.7.1

Mozilla ≫ Netscape Portable Runtime Version4.7.2

Mozilla ≫ Netscape Portable Runtime Version4.7.3

Mozilla ≫ Netscape Portable Runtime Version4.7.4

Mozilla ≫ Netscape Portable Runtime Version4.7.5

Mozilla ≫ Netscape Portable Runtime Version4.7.6

Mozilla ≫ Netscape Portable Runtime Version4.8

Mozilla ≫ Netscape Portable Runtime Version4.8.2

Mozilla ≫ Netscape Portable Runtime Version4.8.3

Mozilla ≫ Netscape Portable Runtime Version4.8.4

Mozilla ≫ Netscape Portable Runtime Version4.8.5

Mozilla ≫ Netscape Portable Runtime Version4.8.6

Mozilla ≫ Netscape Portable Runtime Version4.8.7

Mozilla ≫ Netscape Portable Runtime Version4.8.8

Mozilla ≫ Netscape Portable Runtime Version4.8.9

Mozilla ≫ Netscape Portable Runtime Version4.9

Mozilla ≫ Netscape Portable Runtime Version4.9.1

Mozilla ≫ Netscape Portable Runtime Version4.9.2

Mozilla ≫ Netscape Portable Runtime Version4.9.3

Mozilla ≫ Netscape Portable Runtime Version4.9.4

Mozilla ≫ Netscape Portable Runtime Version4.9.5

Mozilla ≫ Netscape Portable Runtime Version4.9.6

Mozilla ≫ Netscape Portable Runtime Version4.10

Mozilla ≫ Seamonkey Version <= 2.22

Mozilla ≫ Seamonkey Version2.0

Mozilla ≫ Seamonkey Version2.0 Updatealpha_1

Mozilla ≫ Seamonkey Version2.0 Updatealpha_2

Mozilla ≫ Seamonkey Version2.0 Updatealpha_3

Mozilla ≫ Seamonkey Version2.0 Updatebeta_1

Mozilla ≫ Seamonkey Version2.0 Updatebeta_2

Mozilla ≫ Seamonkey Version2.0 Updaterc1

Mozilla ≫ Seamonkey Version2.0 Updaterc2

Mozilla ≫ Seamonkey Version2.0.1

Mozilla ≫ Seamonkey Version2.0.2

Mozilla ≫ Seamonkey Version2.0.3

Mozilla ≫ Seamonkey Version2.0.4

Mozilla ≫ Seamonkey Version2.0.5

Mozilla ≫ Seamonkey Version2.0.6

Mozilla ≫ Seamonkey Version2.0.7

Mozilla ≫ Seamonkey Version2.0.8

Mozilla ≫ Seamonkey Version2.0.9

Mozilla ≫ Seamonkey Version2.0.10

Mozilla ≫ Seamonkey Version2.0.11

Mozilla ≫ Seamonkey Version2.0.12

Mozilla ≫ Seamonkey Version2.0.13

Mozilla ≫ Seamonkey Version2.0.14

Mozilla ≫ Seamonkey Version2.1

Mozilla ≫ Seamonkey Version2.1 Updatealpha1

Mozilla ≫ Seamonkey Version2.1 Updatealpha2

Mozilla ≫ Seamonkey Version2.1 Updatealpha3

Mozilla ≫ Seamonkey Version2.1 Updatebeta1

Mozilla ≫ Seamonkey Version2.1 Updatebeta2

Mozilla ≫ Seamonkey Version2.1 Updatebeta3

Mozilla ≫ Seamonkey Version2.1 Updaterc1

Mozilla ≫ Seamonkey Version2.1 Updaterc2

Mozilla ≫ Seamonkey Version2.10

Mozilla ≫ Seamonkey Version2.10 Updatebeta1

Mozilla ≫ Seamonkey Version2.10 Updatebeta2

Mozilla ≫ Seamonkey Version2.10 Updatebeta3

Mozilla ≫ Seamonkey Version2.10.1

Mozilla ≫ Seamonkey Version2.11

Mozilla ≫ Seamonkey Version2.11 Updatebeta1

Mozilla ≫ Seamonkey Version2.11 Updatebeta2

Mozilla ≫ Seamonkey Version2.11 Updatebeta3

Mozilla ≫ Seamonkey Version2.11 Updatebeta4

Mozilla ≫ Seamonkey Version2.11 Updatebeta5

Mozilla ≫ Seamonkey Version2.11 Updatebeta6

Mozilla ≫ Seamonkey Version2.12

Mozilla ≫ Seamonkey Version2.12 Updatebeta1

Mozilla ≫ Seamonkey Version2.12 Updatebeta2

Mozilla ≫ Seamonkey Version2.12 Updatebeta3

Mozilla ≫ Seamonkey Version2.12 Updatebeta4

Mozilla ≫ Seamonkey Version2.12 Updatebeta5

Mozilla ≫ Seamonkey Version2.12 Updatebeta6

Mozilla ≫ Seamonkey Version2.12.1

Mozilla ≫ Seamonkey Version2.13

Mozilla ≫ Seamonkey Version2.13 Updatebeta1

Mozilla ≫ Seamonkey Version2.13 Updatebeta2

Mozilla ≫ Seamonkey Version2.13 Updatebeta3

Mozilla ≫ Seamonkey Version2.13 Updatebeta4

Mozilla ≫ Seamonkey Version2.13 Updatebeta5

Mozilla ≫ Seamonkey Version2.13 Updatebeta6

Mozilla ≫ Seamonkey Version2.13.1

Mozilla ≫ Seamonkey Version2.13.2

Mozilla ≫ Seamonkey Version2.14

Mozilla ≫ Seamonkey Version2.14 Updatebeta1

Mozilla ≫ Seamonkey Version2.14 Updatebeta2

Mozilla ≫ Seamonkey Version2.14 Updatebeta3

Mozilla ≫ Seamonkey Version2.14 Updatebeta4

Mozilla ≫ Seamonkey Version2.14 Updatebeta5

Mozilla ≫ Seamonkey Version2.15

Mozilla ≫ Seamonkey Version2.15 Updatebeta1

Mozilla ≫ Seamonkey Version2.15 Updatebeta2

Mozilla ≫ Seamonkey Version2.15 Updatebeta3

Mozilla ≫ Seamonkey Version2.15 Updatebeta4

Mozilla ≫ Seamonkey Version2.15 Updatebeta5

Mozilla ≫ Seamonkey Version2.15 Updatebeta6

Mozilla ≫ Seamonkey Version2.15.1

Mozilla ≫ Seamonkey Version2.15.2

Mozilla ≫ Seamonkey Version2.16

Mozilla ≫ Seamonkey Version2.16 Updatebeta1

Mozilla ≫ Seamonkey Version2.16 Updatebeta2

Mozilla ≫ Seamonkey Version2.16 Updatebeta3

Mozilla ≫ Seamonkey Version2.16 Updatebeta4

Mozilla ≫ Seamonkey Version2.16 Updatebeta5

Mozilla ≫ Seamonkey Version2.16.1

Mozilla ≫ Seamonkey Version2.16.2

Mozilla ≫ Seamonkey Version2.17

Mozilla ≫ Seamonkey Version2.17 Updatebeta1

Mozilla ≫ Seamonkey Version2.17 Updatebeta2

Mozilla ≫ Seamonkey Version2.17 Updatebeta3

Mozilla ≫ Seamonkey Version2.17 Updatebeta4

Mozilla ≫ Seamonkey Version2.17.1

Mozilla ≫ Seamonkey Version2.18 Updatebeta1

Mozilla ≫ Seamonkey Version2.18 Updatebeta2

Mozilla ≫ Seamonkey Version2.18 Updatebeta3

Mozilla ≫ Seamonkey Version2.18 Updatebeta4

Mozilla ≫ Seamonkey Version2.19

Mozilla ≫ Seamonkey Version2.19 Updatebeta1

Mozilla ≫ Seamonkey Version2.19 Updatebeta2

Mozilla ≫ Seamonkey Version2.20

Mozilla ≫ Seamonkey Version2.20 Updatebeta1

Mozilla ≫ Seamonkey Version2.20 Updatebeta2

Mozilla ≫ Seamonkey Version2.20 Updatebeta3

Mozilla ≫ Seamonkey Version2.21

Mozilla ≫ Seamonkey Version2.21 Updatebeta1

Mozilla ≫ Seamonkey Version2.21 Updatebeta2

Mozilla ≫ Seamonkey Version2.22 Updatebeta1

Mozilla ≫ Seamonkey Version2.22 Updatebeta2

Mozilla ≫ Firefox Version17.0

Mozilla ≫ Firefox Version17.0.1

Mozilla ≫ Firefox Version17.0.2

Mozilla ≫ Firefox Version17.0.3

Mozilla ≫ Firefox Version17.0.4

Mozilla ≫ Firefox Version17.0.5

Mozilla ≫ Firefox Version17.0.6

Mozilla ≫ Firefox Version17.0.7

Mozilla ≫ Firefox Version17.0.8

Mozilla ≫ Firefox Version17.0.9

Mozilla ≫ Firefox Version17.0.10

Mozilla ≫ Firefox Version24.0

Mozilla ≫ Firefox ESR Version24.0.1

Mozilla ≫ Firefox ESR Version24.0.2

Mozilla ≫ Firefox Version <= 25.0

Mozilla ≫ Firefox Version19.0

Mozilla ≫ Firefox Version19.0.1

Mozilla ≫ Firefox Version19.0.2

Mozilla ≫ Firefox Version20.0

Mozilla ≫ Firefox Version20.0.1

Mozilla ≫ Firefox Version21.0

Mozilla ≫ Firefox Version22.0

Mozilla ≫ Firefox Version23.0

Mozilla ≫ Firefox Version23.0.1

Mozilla ≫ Firefox Version24.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.59%	0.799

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

http://security.gentoo.org/glsa/glsa-201406-19.xml

http://www.mozilla.org/security/announce/2013/mfsa2013-103.html

Vendor Advisory

http://www.ubuntu.com/usn/USN-2031-1

http://www.ubuntu.com/usn/USN-2032-1

https://security.gentoo.org/glsa/201504-01

http://rhn.redhat.com/errata/RHSA-2013-1791.html

http://rhn.redhat.com/errata/RHSA-2013-1829.html

http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00000.html

http://lists.opensuse.org/opensuse-updates/2013-11/msg00080.html

http://www.debian.org/security/2013/dsa-2820

http://www.securityfocus.com/bid/63802

http://www.ubuntu.com/usn/USN-2087-1

https://bugzilla.mozilla.org/show_bug.cgi?id=927687

https://groups.google.com/forum/message/raw?msg=mozilla.dev.tech.nspr/_8AcygMEjSA/mm_cqQzLPFQJ

https://nvd.nist.gov/vuln/detail/CVE-2013-5607

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-5607

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-5607

EUVD