CVE-2014-1557

2014-07-2311:12:00

CWE-94

[email protected]

web.nvd.nist.gov

skia

mozilla

firefox

thunderbird

cve-2014-1557

image scaling

arbitrary code execution

nvd

9.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.3%

JSON

The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, does not properly handle the discarding of image data during function execution, which allows remote attackers to execute arbitrary code by triggering prolonged image scaling, as demonstrated by scaling of a high-quality image.

CPENameOperatorVersion
oracle:solarisoracle solariseq11.3
mozilla:firefox_esrmozilla firefox esreq24.5
mozilla:firefox_esrmozilla firefox esreq24.2
mozilla:thunderbirdmozilla thunderbirdeq24.0.1
mozilla:thunderbirdmozilla thunderbirdeq24.2
mozilla:firefox_esrmozilla firefox esreq24.0
mozilla:firefox_esrmozilla firefox esreq24.0.2
mozilla:firefox_esrmozilla firefox esreq24.1.0
mozilla:thunderbirdmozilla thunderbirdle24.6
mozilla:firefox_esrmozilla firefox esreq24.4

CPE	Name	Operator	Version
oracle:solaris	oracle solaris	eq	11.3
mozilla:firefox_esr	mozilla firefox esr	eq	24.5
mozilla:firefox_esr	mozilla firefox esr	eq	24.2
mozilla:thunderbird	mozilla thunderbird	eq	24.0.1
mozilla:thunderbird	mozilla thunderbird	eq	24.2
mozilla:firefox_esr	mozilla firefox esr	eq	24.0
mozilla:firefox_esr	mozilla firefox esr	eq	24.0.2
mozilla:firefox_esr	mozilla firefox esr	eq	24.1.0
mozilla:thunderbird	mozilla thunderbird	le	24.6
mozilla:firefox_esr	mozilla firefox esr	eq	24.4