Potential DoS through abuse of rate limit in libunity-webapps for Firefox
CVE-2013-1055

4.3MEDIUM

Key Information:

Vendor: Canonical
Status: Unity-firefox-extension; Libunity-webapps
Vendor: CVE Published:; 7 April 2021

What is CVE-2013-1055?

The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and updating it with new callbacks until the libunity-webapps rate limit was hit. Fixed in 3.0.0+14.04.20140416-0ubuntu1.14.04.1 of unity-firefox-extension and in all versions of libunity-webapps by shipping an empty unity-firefox-extension package, thus disabling the extension entirely and invalidating the attack against the libunity-webapps package.

Affected Version(s)

libunity-webapps 2.5.0 < 2.5.0~+14.04.20140409-0ubuntu1

unity-firefox-extension 3.0.0 < 3.0.0+14.04.20140416-0ubuntu1.14.04.1

References

https://ubuntu.com/USN-2743-3

vendor-advisoryx_refsource_UBUNTU

https://launchpad.net/bugs/1175691

vendor-advisoryx_refsource_UBUNTU

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 7, 2021
Vulnerability Reserved
Jan 11, 2013

Credit

Chris Coulson

Canonical

What is CVE-2013-1055?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit