Mozilla Firefox Multiple Vulnerabilities-05 January13 (Windows) Network Vulnerability

Summary

This host is installed with Mozilla Firefox and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow attackers to cause a denial of service or execute arbitrary code in the context of the browser. Impact Level: System/Application

Solution

Upgrade to Mozilla Firefox version 18.0 or later, For updates refer to http://www.mozilla.com/en-US/firefox/all.html

Insight

- An error within the 'CharDistributionAnalysis::HandleOneChar()' can be exploited to cause a buffer overflow. - Unspecified error in the browser engine can be exploited to corrupt memory.

Affected

Mozilla Firefox version before 18.0 on Windows

References

http://secunia.com/advisories/51752
http://securitytracker.com/id?1027955
http://www.mozilla.org/security/announce/2013/mfsa2013-01.html
http://www.mozilla.org/security/announce/2013/mfsa2013-02.html
http://www.osvdb.org/89012

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-0760, CVE-2013-0770

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)
Adobe Acrobat Multiple Vulnerabilities - Mac OS X
Adobe Air Code Execution and DoS Vulnerabilities (Windows)
Adobe AIR Multiple Vulnerabilities-01 Sep14 (Mac OS X)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Windows)

Take action and discover your vulnerabilities