CVE-2014-1514 in Firefoxinformazioni

Riassunto

di MITRE

vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not validate the length of the destination array before a copy operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by triggering incorrect use of the TypedArrayObject class.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

16/01/2014

Divulgazione

19/03/2014

Moderazione

accettato

CPE

pronto

EPSS

0.06087

KEV

no

Attività

molto basso

Fonti

Do you need the next level of professionalism?

Upgrade your account now!