CVE-2014-1500Uncontrolled Resource Consumption in Mozilla Firefox

CWE-400Uncontrolled Resource Consumption8 documents7 sources
Severity
5.0MEDIUMNVD
EPSS
2.3%
top 15.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Mozilla FirefoxMozilla SeamonkeyOpensuse+5 more
Timeline
PublishedMar 19
Latest updateMay 13

Description

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (resource consumption and application hang) via onbeforeunload events that trigger background JavaScript execution.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages8 packages

NVDmozilla/firefox< 28.0
NVDmozilla/seamonkey< 2.25
NVDoracle/solaris11.3
NVDopensuse_project/opensuse11.4, 12.3+1

🔴Vulnerability Details

2
GHSA
GHSA-6qpj-fh7r-r7j7: Mozilla Firefox before 282022-05-13
CVEList
CVE-2014-1500: Mozilla Firefox before 282014-03-19

💥Exploits & PoCs

2
Exploit-DB
Siemens SIMATIC S7-1500 CPU - Remote Denial of Service2018-05-22
Exploit-DB
Joomla! Component Projoom NovaSFH 3.0.2 - 'upload.php' Arbitrary File Upload2013-12-13

📋Vendor Advisories

2
Red Hat
Mozilla: onbeforeunload and Javascript navigation DOS (MFSA 2014-20)2014-03-18
Ubuntu
Firefox vulnerabilities2014-03-18

💬Community

1
Bugzilla
CVE-2014-1500 Mozilla: onbeforeunload and Javascript navigation DOS (MFSA 2014-20)2014-03-17
CVE-2014-1500 — Uncontrolled Resource Consumption | cvebase