Oval Definition:oval:org.mitre.oval:def:16694
Revision Date:2014-10-06Version:32
Title:Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XBL file with multiple bindings that have SVG content.
Description:Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XBL file with multiple bindings that have SVG content.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-0752
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Mozilla Firefox
Mozilla Firefox ESR
Mozilla SeaMonkey
Mozilla Thunderbird
Mozilla Thunderbird ESR
Definition Synopsis
  • Check for vulnerable Seamonkey
  • Mozilla Seamonkey is installed
  • AND Determine if the version of Mozilla Seamonkey is less than 2.15
  • Check for vulnerable Thunderbird
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is less than or equal to 17.0
  • AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1
  • Check for vulnerable Firefox
  • Mozilla Firefox Mainline release is installed
  • AND Mozilla Firefox Mainline version is greater than or equal to 0.1
  • AND Mozilla Firefox Mainline version is less than or equal to 17.0.1
  • OR Check for vulnerable Mozilla Firefox ESR
  • Mozilla Firefox ESR is installed
  • AND Mozilla Firefox ESR version is less than 17.0.2 and greater than or equal to 17.x
  • OR Check for vulnerable Mozilla Thunderbird ESR
  • Mozilla Thunderbird ESR is installed
  • AND Mozilla Thunderbird ESR version is less than 17.0.2 and greater than or equal to 17.x
    • BACK