CVE-2013-1670

EXPLOITED

Firefox < 21.0 and Firefox ESR < 17.0.6 - Cross-Site Scripting via Chrome Object Wrapper

Title source: llm

Exploitation Summary

CVE-2013-1670 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Metasploit.

AI-analyzed exploit summary This Metasploit module exploits CVE-2013-1670 and CVE-2013-1710 to achieve remote code execution on Firefox 15-22 by injecting privileged JavaScript into a chrome:// context via toString and console.time manipulation.

Description

The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content level constructors, which allows remote attackers to bypass certain read-only restrictions and conduct cross-site scripting (XSS) attacks via a crafted web site.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/34363

View Code ZIP pw:eip

This Metasploit module exploits CVE-2013-1670 and CVE-2013-1710 to achieve remote code execution on Firefox 15-22 by injecting privileged JavaScript into a chrome:// context via toString and console.time manipulation.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Mozilla Firefox 15.0 to 22.0

No auth needed

Prerequisites: Victim must visit a malicious webpage · Firefox version between 15.0 and 22.0

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (17)

Core 17

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-0821.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-0820.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17046

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2013:165

Issue Tracking x_refsource_confirm

https://bugzilla.mozilla.org/show_bug.cgi?id=853709

Vendor Advisory x_refsource_confirm

http://www.mozilla.org/security/announce/2013/mfsa2013-42.html

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1823-1

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/93427

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1822-1

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2013/dsa-2699

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00010.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00006.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/34363

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00011.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/59865

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00012.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00008.html

Scores

EPSS 0.1098

EPSS Percentile 95.3%

Details

VulnCheck KEV 2017-01-09

CWE

CWE-264 CWE-79

Status published

Products (23)

mozilla/firefox 19.0

mozilla/firefox 19.0.1

mozilla/firefox 19.0.2

mozilla/firefox 20.0

mozilla/firefox 17.0

mozilla/firefox 17.0.1

mozilla/firefox 17.0.2

mozilla/firefox 17.0.3

mozilla/firefox 17.0.4

mozilla/firefox 17.0.5

... and 13 more

Published May 16, 2013

Tracked Since Feb 18, 2026