Oval Definition:
oval:org.mitre.oval:def:18803
Revision Date
:
2014-10-06
Version
:
23
Title
:
Crash during WAV audio file decoding
Description
:
Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (application crash) via a crafted WAV file that is not properly handled by the nsCString::CharAt function.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2013-1708
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s)
:
Mozilla Firefox
Mozilla Seamonkey
Definition Synopsis
Check for vulnerable Firefox
Mozilla Firefox Mainline release is installed
AND
Mozilla Firefox Mainline version is less than 23.0
AND
Mozilla Firefox Mainline version is greater than or equal to 19.0
OR
Check for vulnerable Seamonkey
Mozilla Seamonkey is installed
AND
Mozilla Seamonkey version less than 2.20
BACK