CVE-2013-1690
Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
Vulnerability Description
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted web site that triggers an attempt to execute data at an unmapped memory location.
Affected Platforms (CPE)
📦
Mozilla
Firefox
< 22.0📦
Mozilla
Firefox
>= 17.0 and < 17.0.7📦
Mozilla
Thunderbird
< 17.0.7📦
Mozilla
Thunderbird Esr
>= 17.0 and < 17.0.7💻
Canonical
Ubuntu Linux
= 12.04💻
Canonical
Ubuntu Linux
= 12.10💻
Canonical
Ubuntu Linux
= 13.04💻
Debian
Debian Linux
= 7.0📦
Redhat
Gluster Storage Server For On Premise
= 2.0💻
Redhat
Enterprise Linux Desktop
= 5.0💻
Redhat
Enterprise Linux Desktop
= 6.0💻
Redhat
Enterprise Linux Eus
= 5.9💻
Redhat
Enterprise Linux Eus
= 6.4💻
Redhat
Enterprise Linux Server
= 5.0💻
Redhat
Enterprise Linux Server
= 6.0💻
Redhat
Enterprise Linux Server Aus
= 5.9💻
Redhat
Enterprise Linux Server Aus
= 6.4💻
Redhat
Enterprise Linux Workstation
= 5.0💻
Redhat
Enterprise Linux Workstation
= 6.0💻
Opensuse
Opensuse
= 11.4💻
Opensuse
Opensuse
= 12.2💻
Opensuse
Opensuse
= 12.3💻
Suse
Linux Enterprise Desktop
= 10💻
Suse
Linux Enterprise Desktop
= 11💻
Suse
Linux Enterprise Desktop
= 11💻
Suse
Linux Enterprise Server
= 10💻
Suse
Linux Enterprise Server
= 11💻
Suse
Linux Enterprise Server
= 11💻
Suse
Linux Enterprise Server
= 11💻
Suse
Linux Enterprise Server
= 11💻
Suse
Linux Enterprise Server
= 11💻
Suse
Linux Enterprise Server
= 11💻
Suse
Linux Enterprise Software Development Kit
= 10💻
Suse