CVE-2014-1514 in FirefoxИнформация

Сводка

по MITRE

vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not validate the length of the destination array before a copy operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by triggering incorrect use of the TypedArrayObject class.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Резервировать

16.01.2014

Раскрытие

19.03.2014

Модерация

принято

Вход

VDB-12664

EPSS

0.06087

KEV

Нет

Деятельности

Очень низкий

Источники

Want to stay up to date on a daily basis?

Enable the mail alert feature now!