CVE-2013-0774 (retired)

Priority
Description
Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird
before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before
2.16 do not prevent JavaScript workers from reading the browser-profile
directory name, which has unspecified impact and remote attack vectors.
Notes
 jdstrand> xulrunner-1.9.2 unmaintained upstream (see README.mozilla for
  details)
Package
Upstream:released (19.0)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (19.0~b6+build1-0ubuntu1)
Package
Upstream:released (2.16)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Priority: Low
Upstream:released (17.0.3)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (17.0.3+build1-0ubuntu1)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 12:06:16 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)