RETIRED: Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2013-93 through -102 Multiple Vulnerabilities

The Mozilla Foundation has released multiple security advisories specifying vulnerabilities in Mozilla Firefox, SeaMonkey, and Thunderbird.

An attacker can exploit these issues to execute arbitrary code in the context of the vulnerable application, crash affected applications, bypass security restrictions, conduct phishing attacks, and perform unauthorized actions; other attacks may also be possible.

These issues are fixed in:

Firefox 25.0
Firefox ESR 24.1
Firefox ESR 17.0.10
Thunderbird 24.1
Thunderbird ESR 17.0.10
Seamonkey 2.22

This BID is being retired. The following individual records exist to better document the issues:

63422 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5597 Use After Free Memory Corruption Vulnerability
63420 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5596 Remote Code Execution Vulnerability
63421 Mozilla Firefox/Thunderbird/SeaMonkey JavaScript Engine Multiple Buffer Overflow Vulnerabilities
63430 Mozilla Firefox/Thunderbird/SeaMonkey XSLT Processing Denial of Service Vulnerability
63429 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5593 Address Bar URI Spoofing Vulnerability
63418 Mozilla Firefox CVE-2013-5592 Remote Memory Corruption Vulnerability
63417 Mozilla Firefox CVE-2013-5591 Remote Memory Corruption Vulnerability
63415 Mozilla Firefox CVE-2013-5590 Remote Memory Corruption Vulnerability
63416 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5603 Remote Code Execution Vulnerability
63424 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5602 Remote Memory Corruption Vulnerability
63428 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5601 Remote Memory Corruption Vulnerability
63427 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability
63423 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5599 Remote Memory Corruption Vulnerability
63419 Mozilla Firefox 'PDF.js' Javascript Security Bypass Vulnerability


 

Privacy Statement
Copyright 2010, SecurityFocus