Summary
This host is installed with Mozilla Seamonkey and is prone to integer overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
Impact Level: Application
Solution
Upgrade to Mozilla Seamonkey version 2.22.1 or later, For updates refer to http://www.mozilla.org/projects/seamonkey
Insight
The flaw is due to integer overflow in the 'PL_ArenaAllocate' function in Mozilla Netscape Portable Runtime (NSPR).
Affected
Mozilla Seamonkey version before 2.22.1 on Windows
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-5607 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Mac OS X)
- Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
- Adobe Air Multiple Vulnerabilities - November12 (Windows)
- 7T Interactive Graphical SCADA System Multiple Security Vulnerabilities