CVE-2014-1514 in Firefoxinformation

Résumé

par MITRE

vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not validate the length of the destination array before a copy operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by triggering incorrect use of the TypedArrayObject class.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

16/01/2014

Divulgation

19/03/2014

Modérer

accepté

Entrée

VDB-12664

CPE

prêt

EPSS

0.06087

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!