{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2064?format=json","vulnerability_id":"VCID-7n14-qc7w-23f8","summary":"Security researchers Tyson Smith and Jesse\nSchwartzentruber of the BlackBerry Security Automated Analysis Team\nused the Address Sanitizer tool while fuzzing to discover a mechanism where\ninserting an ordered list into a document through script could lead to a\npotentially exploitable crash that can be triggered by web content. \nIn general these flaws cannot be exploited through email in the\nThunderbird and Seamonkey products because scripting is disabled, but are\npotentially a risk in browser or browser-like contexts.","aliases":[{"alias":"CVE-2013-6671"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/918?format=json","purl":"pkg:mozilla/Firefox@26.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@26.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/919?format=json","purl":"pkg:mozilla/Firefox%20ESR@24.2.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@24.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/921?format=json","purl":"pkg:mozilla/Seamonkey@2.23.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Seamonkey@2.23.0"},{"url":"http://public2.vulnerablecode.io/api/packages/920?format=json","purl":"pkg:mozilla/Thunderbird@24.2.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@24.2.0"}],"affected_packages":[],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6671","reference_id":"CVE-2013-6671","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6671"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2013-111","reference_id":"mfsa2013-111","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2013-111"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7n14-qc7w-23f8"}