10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.07 Low
EPSS
Percentile
93.9%
Package : nspr
Version : 4.8.6-1+squeeze2
CVE ID : CVE-2014-1545
Abhiskek Arya discovered an out of bounds write in the cvt_t() function of
the NetScape Portable Runtime Library which could result in the execution
of arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | all | iceweasel-l10n-be | < 1:24.6.0esr-1~deb7u1 | iceweasel-l10n-be_1:24.6.0esr-1~deb7u1_all.deb |
Debian | 7 | armel | xulrunner-24.0-dbg | < 24.6.0esr-1~deb7u1 | xulrunner-24.0-dbg_24.6.0esr-1~deb7u1_armel.deb |
Debian | 7 | sparc | libnspr4-dev | < 2:4.9.2-1+deb7u2 | libnspr4-dev_2:4.9.2-1+deb7u2_sparc.deb |
Debian | 7 | s390x | xulrunner-dev | < 24.6.0esr-1~deb7u1 | xulrunner-dev_24.6.0esr-1~deb7u1_s390x.deb |
Debian | 7 | all | iceweasel-l10n-csb | < 1:24.6.0esr-1~deb7u1 | iceweasel-l10n-csb_1:24.6.0esr-1~deb7u1_all.deb |
Debian | 7 | armhf | libmozjs24d | < 24.6.0esr-1~deb7u1 | libmozjs24d_24.6.0esr-1~deb7u1_armhf.deb |
Debian | 7 | powerpc | spidermonkey-bin | < 24.6.0esr-1~deb7u1 | spidermonkey-bin_24.6.0esr-1~deb7u1_powerpc.deb |
Debian | 7 | armhf | libnspr4-dev | < 2:4.9.2-1+deb7u2 | libnspr4-dev_2:4.9.2-1+deb7u2_armhf.deb |
Debian | 7 | all | iceweasel-l10n-fr | < 1:24.6.0esr-1~deb7u1 | iceweasel-l10n-fr_1:24.6.0esr-1~deb7u1_all.deb |
Debian | 7 | kfreebsd-i386 | libmozjs24d | < 24.6.0esr-1~deb7u1 | libmozjs24d_24.6.0esr-1~deb7u1_kfreebsd-i386.deb |