CVE-2013-1707

CVE Database · CVE-2013-1707

CVE-2013-1707

· N/AModified

CVSS v3.1

N/A

EPSS

0.33%

Published

Aug 6, 2013

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Stack-based buffer overflow in Mozilla Updater in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR 17.x before 17.0.8 allows local users to gain privileges via a long pathname on the command line to the Mozilla Maintenance Service.

Weaknesses (CWE)

CWE-119

Affected Products (31)

mozilla · thunderbirdvulnerable

mozilla · thunderbird_esrvulnerable

References (6)

http://www.mozilla.org/security/announce/2013/mfsa2013-66.html

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=888314

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18871

http://www.mozilla.org/security/announce/2013/mfsa2013-66.html

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=888314

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18871

KEV Catalog EPSS Scores Vendors All CVEs