CVE-2014-1565 in Firefoxالمعلومات

الملخص

بحسب MITRE

The mozilla::dom::AudioEventTimeline function in the Web Audio API implementation in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 does not properly create audio timelines, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via crafted API calls.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

16/01/2014

إفشاء

03/09/2014

الاعتدال

تمت الموافقة

إدخال

VDB-67445

EPSS

0.02790

KEV

لا

النشاطات

منخفض جدًا

القطاع

Energy, Police, ...

المصادر

Interested in the pricing of exploits?

See the underground prices here!