Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-6tpm-suyb-hkgt
Summary
Security researcher regenrecht reported, via TippingPoint's Zero Day Initiative, a use-after-free in XMLSerializer by the exposing of serializeToStream to web content. This can lead to arbitrary code execution when exploited. 
In general these flaws cannot be exploited through email in the Thunderbird and SeaMonkey products because scripting is disabled, but are potentially a risk in browser or browser-like contexts in those products.
Aliases
0
alias CVE-2013-0753
Fixed_packages
0
url pkg:mozilla/Firefox@18.0.0
purl pkg:mozilla/Firefox@18.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@18.0.0
1
url pkg:mozilla/Firefox%20ESR@10.0.12
purl pkg:mozilla/Firefox%20ESR@10.0.12
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@10.0.12
2
url pkg:mozilla/Firefox%20ESR@17.0.2
purl pkg:mozilla/Firefox%20ESR@17.0.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@17.0.2
3
url pkg:mozilla/SeaMonkey@2.15.0
purl pkg:mozilla/SeaMonkey@2.15.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.15.0
4
url pkg:mozilla/Thunderbird@17.0.2
purl pkg:mozilla/Thunderbird@17.0.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@17.0.2
5
url pkg:mozilla/Thunderbird%20ESR@10.0.12
purl pkg:mozilla/Thunderbird%20ESR@10.0.12
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@10.0.12
6
url pkg:mozilla/Thunderbird%20ESR@17.0.2
purl pkg:mozilla/Thunderbird%20ESR@17.0.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.2
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0753
reference_id CVE-2013-0753
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0753
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2013-16
reference_id mfsa2013-16
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2013-16
Weaknesses
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-6tpm-suyb-hkgt