KLA10119Multiple vulnerabilities in Mozilla

2014-07-22T00:00:00
ID KLA10119
Type kaspersky
Reporter Kaspersky Lab
Modified 2015-02-12T00:00:00

Description

CVSS:

10.0

Detect date:

07/22/2014

Severity:

Critical

Description:

An unspecified vulnerability was found in Clam Anti-virus. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally at a point related to the OLE2 parser via a specially designed file.
Below is a complete list of vulnerabilities

Affected products:

Mozilla Firefox ESR 24.6.0 and earlier
Mozilla Firefox 30.0 and earlier
Waterfox Firefox 30.0 and earlier
Mozilla Thunderbird 30.0 and earlier
CometBird all versions

Solution:

Update to latest version
Thunderbird
Firefox

Original advisories:

MFSA

Impacts:

ACE

Related products:

Waterfox Firefox

CVE-IDS:

CVE-2014-1548
CVE-2014-1547
CVE-2014-1551
CVE-2014-1555
CVE-2014-1556
CVE-2014-1544
CVE-2014-1557