New Search

Integer signedness error in the pixman_fill_sse2 function in pixman-sse2.c in Pixman as distributed with Cairo and used in Mozilla Firefox before 20.0 Firefox ESR 17.x before 17.0.5 Thunderbird before 17.0.5 Thunderbird ESR 17.x before 17.0.5 SeaMonkey before 2.17 and other products allows remote attackers to execute arbitrary code via crafted values that trigger attempted use of a (1) negative box boundary or (2) negative box size leading to an out-of-bounds write operation.

oval:org.mitre.oval:def:17062

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0 Firefox ESR 17.x before 17.0.6 Thunderbird before 17.0.6 and Thunderbird ESR 17.x before 17.0.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008
  • Microsoft Windows 7
  • Microsoft Windows Server 2003
  • Microsoft Windows 2000
  • Microsoft Windows 8
  • Microsoft Windows Vista
Class:
vulnerability
Reference(s):
  • CVE-2013-0801
Product(s):
  • Mozilla Thunderbird ESR
  • Mozilla SeaMonkey
  • Mozilla Firefox
  • Mozilla Thunderbird
  • Mozilla Firefox ESR