CVE-2014-1565 in FirefoxИнформация

Сводка

по MITRE

The mozilla::dom::AudioEventTimeline function in the Web Audio API implementation in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 does not properly create audio timelines, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via crafted API calls.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Резервировать

16.01.2014

Раскрытие

03.09.2014

Модерация

принято

Вход

VDB-67445

EPSS

0.02790

KEV

Нет

Деятельности

Очень низкий

Источники

Do you need the next level of professionalism?

Upgrade your account now!