CVE Vulnerabilities

CVE-2013-1722

Published: Sep 18, 2013 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
6.8 CRITICAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu
MEDIUM

Use-after-free vulnerability in the nsAnimationManager::BuildAnimations function in the Animation Manager in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving stylesheet cloning.

Affected Software

Name Vendor Start Version End Version
Thunderbird Mozilla * 17.0.9 (including)
Thunderbird Mozilla 17.0 (including) 17.0 (including)
Thunderbird Mozilla 17.0.1 (including) 17.0.1 (including)
Thunderbird Mozilla 17.0.2 (including) 17.0.2 (including)
Thunderbird Mozilla 17.0.3 (including) 17.0.3 (including)
Thunderbird Mozilla 17.0.4 (including) 17.0.4 (including)
Thunderbird Mozilla 17.0.5 (including) 17.0.5 (including)
Thunderbird Mozilla 17.0.6 (including) 17.0.6 (including)
Thunderbird Mozilla 17.0.7 (including) 17.0.7 (including)
Thunderbird Mozilla 17.0.8 (including) 17.0.8 (including)
Red Hat Enterprise Linux 5 RedHat thunderbird-0:17.0.9-1.el5_9 *
Red Hat Enterprise Linux 5 RedHat firefox-0:17.0.9-1.el5_9 *
Red Hat Enterprise Linux 5 RedHat xulrunner-0:17.0.9-1.el5_9 *
Red Hat Enterprise Linux 6 RedHat firefox-0:17.0.9-1.el6_4 *
Red Hat Enterprise Linux 6 RedHat xulrunner-0:17.0.9-1.el6_4 *
Red Hat Enterprise Linux 6 RedHat thunderbird-0:17.0.9-1.el6_4 *
Firefox Ubuntu devel *
Firefox Ubuntu lucid *
Firefox Ubuntu precise *
Firefox Ubuntu quantal *
Firefox Ubuntu raring *
Firefox Ubuntu upstream *
Thunderbird Ubuntu devel *
Thunderbird Ubuntu lucid *
Thunderbird Ubuntu precise *
Thunderbird Ubuntu quantal *
Thunderbird Ubuntu raring *
Thunderbird Ubuntu upstream *

References