Lucene search

K

MozillaCVELIST:CVE-2014-1580

HistoryOct 15, 2014 - 10:00 a.m.

CVE-2014-1580

2014-10-1510:00:00

mozilla

www.cve.org

5

AI Score

8.9

Confidence

High

EPSS

0.004

Percentile

74.4%

Mozilla Firefox before 33.0 does not properly initialize memory for GIF images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers a sequence of rendering operations for truncated GIF data within a CANVAS element.

References

lists.fedoraproject.org/pipermail/package-announce/2014-November/141796.html

lists.fedoraproject.org/pipermail/package-announce/2014-October/141085.html

lists.opensuse.org/opensuse-updates/2014-11/msg00001.html

lists.opensuse.org/opensuse-updates/2014-11/msg00002.html

secunia.com/advisories/62022

secunia.com/advisories/62023

www.mozilla.org/security/announce/2014/mfsa2014-78.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.securityfocus.com/bid/70431

www.securitytracker.com/id/1031028

www.ubuntu.com/usn/USN-2372-1

bugzilla.mozilla.org/show_bug.cgi?id=1063733

security.gentoo.org/glsa/201504-01

AI Score

8.9

Confidence

High

EPSS

0.004

Percentile

74.4%

Related for CVELIST:CVE-2014-1580

ubuntucve1 cve1 securityvulns3 nvd1 mozilla1 openvas6 prion1 freebsd1 nessus12 ubuntu1 mageia1 gentoo1