Unrated severityNVD Advisory· Published May 16, 2013· Updated Jun 16, 2026
CVE-2013-1673
CVE-2013-1673
Description
The Mozilla Updater in Mozilla Firefox before 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versions, which allows local users to gain privileges by leveraging write access to a "trusted path."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=20.0.1
- cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*
- (no CPE)range: <21.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.