CVE-2013-0760

CVE Database · CVE-2013-0760

CVE-2013-0760

· N/AModified

CVSS v3.1

N/A

EPSS

5.33%

Published

Jan 13, 2013

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the CharDistributionAnalysis::HandleOneChar function in Mozilla Firefox before 18.0, Thunderbird before 17.0.2, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code via a crafted document.

Weaknesses (CWE)

CWE-120

Affected Products (21)

mozilla · firefox (up to 10.0.11)vulnerable

mozilla · firefox (up to 18.0)vulnerable

mozilla · firefox (up to 17.0.2)vulnerable

mozilla · seamonkey (up to 2.15)vulnerable

mozilla · thunderbird (up to 17.0.2)vulnerable

mozilla · thunderbird_esr (up to 10.0.12)vulnerable

mozilla · thunderbird_esr (up to 17.0.2)vulnerable

opensuse · opensusevulnerable

opensuse · opensuse

References (20)

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00006.html

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00007.html

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00010.html

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00017.html

Mailing ListThird Party Advisory

http://www.mozilla.org/security/announce/2013/mfsa2013-02.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs