Arbitrary Code Execution and Denial of Service Vulnerability in ClusterIterator::NextCluster Function

Arbitrary Code Execution and Denial of Service Vulnerability in ClusterIterator::NextCluster Function

CVE-2013-0778 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The ClusterIterator::NextCluster function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via unspecified vectors.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.