VYPR
Unrated severityNVD Advisory· Published May 16, 2013· Updated Jun 16, 2026

CVE-2013-1681

CVE-2013-1681

Description

Use-after-free vulnerability in the nsContentUtils::RemoveScriptBlocker function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

27
  • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=20.0.1
    • cpe:2.3:a:mozilla:firefox:17.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:17.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:17.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:17.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:17.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:17.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*
    • (no CPE)range: <21.0
  • cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*range: <=17.0.5
    • cpe:2.3:a:mozilla:thunderbird:17.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:17.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:17.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:17.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:17.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird_esr:17.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird_esr:17.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird_esr:17.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird_esr:17.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird_esr:17.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird_esr:17.0.5:*:*:*:*:*:*:*
    • (no CPE)range: <17.0.6
  • osv-coords2 versions
    < 50.1.0-1.1+ 1 more
    • (no CPE)range: < 50.1.0-1.1
    • (no CPE)range: < 45.5.1-1.1

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.