CVE-2013-1688: Mozilla: Arbitrary code execution within Profiler (MFSA 2013-52)

Severity: Critical

CVSS Score: 9.3

The Profiler implementation in Mozilla Firefox before 22.0 parses untrusted data during UI rendering, which allows user-assisted remote attackers to execute arbitrary JavaScript code via a crafted web site.