CVE-2013-1693

NONECVSS 0.0

0.0

The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to read pixel values, and possibly bypass the Same Origin Policy and read text from a different domain, by observing timing differences in execution of filter code.

🔗 References (32)

security@mozillahttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00003.html
security@mozillahttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00004.html
security@mozillahttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00005.html
security@mozillahttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00006.html
security@mozillahttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00010.html
security@mozillahttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00011.html
security@mozillahttp://rhn.redhat.com/errata/RHSA-2013-0981.html
security@mozillahttp://rhn.redhat.com/errata/RHSA-2013-0982.html
security@mozillahttp://www.debian.org/security/2013/dsa-2716
security@mozillahttp://www.debian.org/security/2013/dsa-2720
security@mozillahttp://www.mozilla.org/security/announce/2013/mfsa2013-55.html
security@mozillahttp://www.securityfocus.com/bid/60787
security@mozillahttp://www.ubuntu.com/usn/USN-1890-1
security@mozillahttp://www.ubuntu.com/usn/USN-1891-1
security@mozillahttps://bugzilla.mozilla.org/show_bug.cgi?id=711043

Is Your Infrastructure Affected by CVE-2013-1693?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-1693

📅 Published

🔄 Last Modified

🔗 References (32)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-1693?