What is the severity of CVE-2013-1677?

CVE-2013-1677 is classified as a critical vulnerability that can allow remote code execution or a denial of service.

How do I fix CVE-2013-1677?

To fix CVE-2013-1677, update affected software such as Mozilla Firefox and Thunderbird to versions 21.0 or later.

Which versions are affected by CVE-2013-1677?

CVE-2013-1677 affects Mozilla Firefox versions before 21.0, Firefox ESR versions before 17.0.6, and Thunderbird versions before 17.0.6.

Can CVE-2013-1677 be exploited remotely?

Yes, CVE-2013-1677 can be exploited by remote attackers through unspecified vectors.

What impact does CVE-2013-1677 have on users?

CVE-2013-1677 can lead to arbitrary code execution or cause a denial of service, potentially compromising user data.

Vulnerability/
CVE-2013-1677

critical

CWE

399

16/5/2013

21/10/2024

CVE-2013-1677

First published: Thu May 16 2013(Updated: )

The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via unspecified vectors.

Credit: security@mozilla.org security@mozilla.org

Affected Software	Affected Version	How to fix
Mozilla Firefox	<=20.0.1
Mozilla Firefox	=19.0
Mozilla Firefox	=19.0.1
Mozilla Firefox	=19.0.2
Mozilla Firefox	=20.0
Mozilla Firefox ESR	=17.0
Mozilla Firefox ESR	=17.0.1
Mozilla Firefox ESR	=17.0.2
Mozilla Firefox ESR	=17.0.3
Mozilla Firefox ESR	=17.0.4
Mozilla Firefox ESR	=17.0.5
Mozilla Thunderbird	<=17.0.5
Mozilla Thunderbird	=17.0
Mozilla Thunderbird	=17.0.1
Mozilla Thunderbird	=17.0.2
Mozilla Thunderbird	=17.0.3
Mozilla Thunderbird	=17.0.4
Mozilla Thunderbird ESR	=17.0
Mozilla Thunderbird ESR	=17.0.1
Mozilla Thunderbird ESR	=17.0.2
Mozilla Thunderbird ESR	=17.0.3
Mozilla Thunderbird ESR	=17.0.4
Mozilla Thunderbird ESR	=17.0.5
Mozilla Firefox	=17.0
Mozilla Firefox	=17.0.1
Mozilla Firefox	=17.0.2
Mozilla Firefox	=17.0.3
Mozilla Firefox	=17.0.4
Mozilla Firefox	=17.0.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-1677?
CVE-2013-1677 is classified as a critical vulnerability that can allow remote code execution or a denial of service.
How do I fix CVE-2013-1677?
To fix CVE-2013-1677, update affected software such as Mozilla Firefox and Thunderbird to versions 21.0 or later.
Which versions are affected by CVE-2013-1677?
CVE-2013-1677 affects Mozilla Firefox versions before 21.0, Firefox ESR versions before 17.0.6, and Thunderbird versions before 17.0.6.
Can CVE-2013-1677 be exploited remotely?
Yes, CVE-2013-1677 can be exploited by remote attackers through unspecified vectors.
What impact does CVE-2013-1677 have on users?
CVE-2013-1677 can lead to arbitrary code execution or cause a denial of service, potentially compromising user data.

agent/type
agent/weakness
agent/severity
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/first-publish-date
agent/event
agent/author
agent/last-modified-date
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/softwarecombine
agent/source
vendor/mozilla
canonical/mozilla firefox
version/mozilla firefox/20.0.1
version/mozilla firefox/19.0
version/mozilla firefox/19.0.1
version/mozilla firefox/19.0.2
version/mozilla firefox/20.0
canonical/mozilla firefox esr
version/mozilla firefox esr/17.0
version/mozilla firefox esr/17.0.1
version/mozilla firefox esr/17.0.2
version/mozilla firefox esr/17.0.3
version/mozilla firefox esr/17.0.4
version/mozilla firefox esr/17.0.5
canonical/mozilla thunderbird
version/mozilla thunderbird/17.0.5
version/mozilla thunderbird/17.0
version/mozilla thunderbird/17.0.1
version/mozilla thunderbird/17.0.2
version/mozilla thunderbird/17.0.3
version/mozilla thunderbird/17.0.4
canonical/mozilla thunderbird esr
version/mozilla thunderbird esr/17.0
version/mozilla thunderbird esr/17.0.1
version/mozilla thunderbird esr/17.0.2
version/mozilla thunderbird esr/17.0.3
version/mozilla thunderbird esr/17.0.4
version/mozilla thunderbird esr/17.0.5
version/mozilla firefox/17.0
version/mozilla firefox/17.0.1
version/mozilla firefox/17.0.2
version/mozilla firefox/17.0.3
version/mozilla firefox/17.0.4
version/mozilla firefox/17.0.5

Frequently Asked Questions

What is the severity of CVE-2013-1677?
CVE-2013-1677 is classified as a critical vulnerability that can allow remote code execution or a denial of service.
How do I fix CVE-2013-1677?
To fix CVE-2013-1677, update affected software such as Mozilla Firefox and Thunderbird to versions 21.0 or later.
Which versions are affected by CVE-2013-1677?
CVE-2013-1677 affects Mozilla Firefox versions before 21.0, Firefox ESR versions before 17.0.6, and Thunderbird versions before 17.0.6.
Can CVE-2013-1677 be exploited remotely?
Yes, CVE-2013-1677 can be exploited by remote attackers through unspecified vectors.
What impact does CVE-2013-1677 have on users?
CVE-2013-1677 can lead to arbitrary code execution or cause a denial of service, potentially compromising user data.

CVE-2013-1677

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-1677?

How do I fix CVE-2013-1677?

Which versions are affected by CVE-2013-1677?

Can CVE-2013-1677 be exploited remotely?

What impact does CVE-2013-1677 have on users?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2013-1677?

How do I fix CVE-2013-1677?

Which versions are affected by CVE-2013-1677?

Can CVE-2013-1677 be exploited remotely?

What impact does CVE-2013-1677 have on users?