1
Candidate: CVE-2013-0797
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0797
5
http://www.mozilla.org/security/announce/2013/mfsa2013-34.html
7
Untrusted search path vulnerability in the Mozilla Updater in Mozilla
8
Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before
9
17.0.5, Thunderbird ESR 17.x before 17.0.5, and SeaMonkey before 2.17
10
allows local users to gain privileges via a Trojan horse DLL file in an
11
unspecified directory.
14
jdstrand> xulrunner-1.9.2 unmaintained upstream (see README.mozilla for
16
chrisccoulson> Only affects builds with Mozilla's updater enabled
20
Assigned-to: chrisccoulson
23
upstream_firefox: released (20.0)
24
hardy_firefox: ignored (reached end-of-life)
25
lucid_firefox: not-affected
26
oneiric_firefox: not-affected
27
precise_firefox: not-affected
28
quantal_firefox: not-affected
29
devel_firefox: not-affected
31
Patches_xulrunner-1.9.2:
32
upstream_xulrunner-1.9.2: needs-triage
33
hardy_xulrunner-1.9.2: ignored (reached end-of-life)
34
lucid_xulrunner-1.9.2: ignored (see notes)
35
oneiric_xulrunner-1.9.2: DNE
36
precise_xulrunner-1.9.2: DNE
37
quantal_xulrunner-1.9.2: DNE
38
devel_xulrunner-1.9.2: DNE
40
Patches_xulrunner-2.0:
41
upstream_xulrunner-2.0: needs-triage
42
hardy_xulrunner-2.0: DNE
43
lucid_xulrunner-2.0: DNE
44
oneiric_xulrunner-2.0: DNE
45
precise_xulrunner-2.0: DNE
46
quantal_xulrunner-2.0: DNE
47
devel_xulrunner-2.0: DNE
51
upstream_seamonkey: pending (2.17)
52
hardy_seamonkey: ignored (reached end-of-life)
53
lucid_seamonkey: not-affected
54
oneiric_seamonkey: not-affected
55
precise_seamonkey: DNE
56
quantal_seamonkey: DNE
61
upstream_thunderbird: released (17.0.5)
62
hardy_thunderbird: ignored (reached end-of-life)
63
lucid_thunderbird: not-affected
64
oneiric_thunderbird: not-affected
65
precise_thunderbird: not-affected
66
quantal_thunderbird: not-affected
67
devel_thunderbird: not-affected