VDB
CVE-2013-6673
CVE-2013-6673
PUBLISHED
Reported by mozilla · Published December 11, 2013
Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 do not recognize a user's removal of trust from an EV X.509 certificate, which makes it easier for man-in-the-middle attackers to spoof SSL servers in opportunistic circumstances via a valid certificate that is unacceptable to the user.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Exploit Intelligence
Timeline
- Dec 11, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- 64213 vdb-entryx_refsource_BID
- openSUSE-SU-2013:1958 vendor-advisoryx_refsource_SUSE
- SUSE-SU-2013:1919 vendor-advisoryx_refsource_SUSE
- openSUSE-SU-2013:1957 vendor-advisoryx_refsource_SUSE
- FEDORA-2013-23127 vendor-advisoryx_refsource_FEDORA
- FEDORA-2013-23519 vendor-advisoryx_refsource_FEDORA
- 1029470 vdb-entryx_refsource_SECTRACK
- openSUSE-SU-2013:1917 vendor-advisoryx_refsource_SUSE
- openSUSE-SU-2013:1959 vendor-advisoryx_refsource_SUSE
- GLSA-201504-01 vendor-advisoryx_refsource_GENTOO
- x_refsource_CONFIRM
- openSUSE-SU-2013:1916 vendor-advisoryx_refsource_SUSE
- openSUSE-SU-2014:0008 vendor-advisoryx_refsource_SUSE
- 1029476 vdb-entryx_refsource_SECTRACK
- openSUSE-SU-2013:1918 vendor-advisoryx_refsource_SUSE
- FEDORA-2013-23291 vendor-advisoryx_refsource_FEDORA
- USN-2052-1 vendor-advisoryx_refsource_UBUNTU
- x_refsource_CONFIRM
- x_refsource_CONFIRM
- USN-2053-1 vendor-advisoryx_refsource_UBUNTU
…and 1 more