CVE-2014-1554 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources

Severity

10.0CRITICALNVD

EPSS

1.3%

top 20.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox

Timeline

PublishedSep 3

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 32.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶Ubuntumozilla/firefox< 32.0+build1-0ubuntu0.14.04.1

▶NVDmozilla/firefox31.1.0+2

🔴Vulnerability Details

GHSA

GHSA-h6cc-vr2r-vfmx: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 32↗2022-05-17

▶

OSV

firefox vulnerabilities↗2014-09-02

▶

OSV

CVE-2014-1554: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 32↗2014-09-02

▶

📋Vendor Advisories

Red Hat

Mozilla: Miscellaneous memory safety hazards (rv:32.0 / rv:31.1) (MFSA 2014-67)↗2014-09-03

▶

Ubuntu

Firefox vulnerabilities↗2014-09-02

▶

💬Community

Bugzilla

CVE-2014-1553 CVE-2014-1554 Mozilla: Miscellaneous memory safety hazards (rv:32.0 / rv:31.1) (MFSA 2014-67)↗2014-09-01

▶