Home

CVE-2013-0765

Description

Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restrictions via unspecified vectors.

Risk Information

Base Score
8.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.777

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Mozilla Firefox (x64) 18.0.2Windows
Multiple vulnerabilities affected in Mozilla Thunderbird 17.0.2Windows
Multiple vulnerabilities affected in Mozilla_Firefox 18.0.2Windows
Multiple vulnerabilities affected in SeaMonkey 2.9.1Windows
Multiple Vulnerabilities are affected in Mozilla Firefox (x64) 18.99Windows
Multiple Vulnerabilities are affected in Mozilla_Firefox 18.99Windows
Multiple vulnerabilities are fixed in Mozilla Firefox For Mac (119.0)Mac
Multiple vulnerabilities are fixed in Mozilla Firefox For Mac (119.0.1)Mac
Multiple Vulnerabilities are affected in Mozilla Firefox for Mac 18.2Mac
Multiple Vulnerabilities are affected in SeaMonkey For Mac 2.15.2Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343016Mozilla Firefox (x64) (132.0.2)
PATCH-315938Mozilla Thunderbird (68.12.0)
PATCH-343015Mozilla Firefox (132.0.2)
PATCH-341197SeaMonkey (2.53.19)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-611870Mozilla Firefox For Mac (142.0.1)
PATCH-611088SeaMonkey For Mac (2.53.21)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234