CVE-2014-1514 in Firefoxinfo

Zusammenfassung

von MITRE

vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not validate the length of the destination array before a copy operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by triggering incorrect use of the TypedArrayObject class.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservieren

16.01.2014

Veröffentlichung

19.03.2014

Moderieren

akzeptiert

Eintrag

VDB-12664

CPE

bereit

EPSS

0.06087

KEV

nein

Aktivitäten

very low

Quellen

Want to know what is going to be exploited?

We predict KEV entries!