CVE-2014-1494 — Out-of-bounds Write in Mozilla Firefox

6 documents6 sources

Severity

9.3CRITICALNVD

EPSS

0.6%

top 31.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

8

Mozilla Firefox Mozilla Seamonkey Opensuse +5 more

Timeline

PublishedMar 19

Latest updateMay 13

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages8 packages

▶NVDmozilla/firefox< 28.0

▶NVDmozilla/seamonkey< 2.25

▶NVDoracle/solaris11.3

▶NVDopensuse/opensuse13.1

▶NVDopensuse_project/opensuse11.4, 12.3+1

🔴Vulnerability Details

2

GHSA

GHSA-v5fh-p9hh-37q4: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28↗2022-05-13

▶

CVEList

CVE-2014-1494: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28↗2014-03-19

▶

📋Vendor Advisories

2

Red Hat

Mozilla: Miscellaneous memory safety hazards (rv:28.0) (MFSA 2014-15)↗2014-03-18

▶

Ubuntu

Firefox vulnerabilities↗2014-03-18

▶

💬Community

1

Bugzilla

CVE-2014-1494 Mozilla: Miscellaneous memory safety hazards (rv:28.0) (MFSA 2014-15)↗2014-03-17

▶

CVE-2014-1494 — Out-of-bounds Write in Mozilla Firefox | cvebase