Vulnerability Bulletins |
Publicada vulnerabilidad en Mozilla Firefox, Mozilla Thunderbird |
|
Vulnerability classification |
|
Property | Value |
Confidence level | Oficial |
Impact | Ejecucion remota de codigo |
Dificulty | Avanzado |
Required attacker level | Acceso remoto sin cuenta a un servicio estandar |
System information |
|
Property | Value |
Affected manufacturer | GNU/Linux |
Affected software |
Mozilla Thunderbird ESR 10.0.5 10.0.4 ESR 10.0.3 Mozilla Thunderbird ESR 10.0.2 Mozilla Thunderbird 1.3.20 Mozilla Thunderbird 1.3.20 Mozilla Thunderbird 3.1.14 Mozilla Thunderbird 3.1.13 Mozilla Thunderbird 3.1.12 Mozilla Thunderbird 3.1.12 Mozilla Thunderbird 3.1.7 Mozilla Thunderbird 3.1.5 Mozilla Thunderbird 3.1.5 Mozilla Thunderbird 3.1.4 Mozilla Thunderbird 3.0.11 Mozilla Thunderbird 3.0.9 Mozilla Thunderbird 3.0.9 Mozilla Thunderbird 3.0.8 Mozilla Thunderbird 3.0.5 Mozilla Thunderbird 3.0.5 Mozilla Thunderbird 3.0.4 Mozilla Thunderbird 3.0.2 Mozilla Thunderbird 9.0 Mozilla Thunderbird 8.0 Mozilla Thunderbird 7.0.1 Mozilla Thunderbird 7.0 Mozilla Thunderbird 6.0.2 Mozilla Thunderbird 6.0.1 Mozilla Thunderbird 6.0 Mozilla Thunderbird 6 6 5,0 Mozilla Thunderbird 5 Mozilla Thunderbird 3.3 Mozilla Thunderbird 3.3 Mozilla Thunderbird 3.1.9 Mozilla Thunderbird 3.1.8 Mozilla Thunderbird 3.1.7 Mozilla Thunderbird 3.1.6 Mozilla Thunderbird 3.1.3 Mozilla Thunderbird 3.1.2 Mozilla Thunderbird 3.1.2 Mozilla Thunderbird 1.3.19 Mozilla Thunderbird 1.3.18 Mozilla Thunderbird 1.3.18 Mozilla Thunderbird 1.3.17 Mozilla Thunderbird 1.3.16 Mozilla Thunderbird 1.3.15 Mozilla Thunderbird 3.1.11 Mozilla Thunderbird 3.1.10 Mozilla Thunderbird 3.1.1 Mozilla Thunderbird 3.1 Mozilla Thunderbird 3.0.7 Mozilla Thunderbird 3.0 0.6 Mozilla Thunderbird 3.0.4 Mozilla Thunderbird 3.0.3 Mozilla Thunderbird 13.0 12.0 11.0 10.0.2 10.0.1 Mozilla Thunderbird 10,0 Mozilla Firefox 2.9 Mozilla Firefox 2.8 Mozilla Firefox 2.7.2 Mozilla Firefox 2.7.1 Mozilla Firefox 2.7 Mozilla Firefox 2.6 Mozilla Firefox 2.5 Mozilla Firefox 2.4 Mozilla Firefox 2.3 Mozilla Firefox 2.2 Mozilla Firefox 2.2 Mozilla Firefox 2.1b2 Mozilla Firefox 2,10 Mozilla Firefox 2.1 alpha3 Mozilla Firefox 2.1 Mozilla Alpha2 Firefox 2.1 alfa 1 Mozilla Firefox 2.1 Mozilla Firefox 9.0.1 Mozilla Firefox 9.0 Mozilla Firefox 8.0.1 Mozilla Firefox 8.0 Mozilla Firefox 7.0.1 Mozilla Firefox 7.0 Mozilla Firefox 6.0.2 Mozilla Firefox 6.0.1 Mozilla Firefox 6.0 Mozilla Firefox 6 Mozilla Firefox 5.0.1 Mozilla Firefox 5.0 Mozilla Firefox 13.0 12.0 11.0 Mozilla Firefox 10.0.2 10.0.1 Mozilla Firefox 10.0 |
Description |
|
Esta vulnerabilidad permite explotar con éxito a un atacante remoto ejecutar código arbitrario a través de un documento HTML, esto se debe a que estas aplicaciones son propensas a un desbordamiento de pila de búfer. | |
Solution |
|
Las actualizaciones ya están disponibles. Para actualizarlo visitar la página oficial: Mozilla Firefox Página de Inicio (http://www.mozilla.org/en-US/) Thunderbird Homepage (http://www.mozilla.org/es-ES/products/thunderbird/) |
|
Standar resources |
|
Property | Value |
CVE | CVE-2013-0768 |
BID | |
Other resources |
|
Security Focus http://www.securityfocus.com/bid/57204/info Inteco http://cert.inteco.es/vulnDetail/Actualidad/Actualidad_Vulnerabilidades/detalle_vulnerabilidad//CVE-2013-0768 National Vulnerability Database http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0768 |
Version history |
||
Version | Comments | Date |
1.0 | Aviso emitido | 2013-01-16 |