KLA10120Multiple vulnerabilities in Mozilla

2014-03-18T00:00:00
ID KLA10120
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

03/18/2014

Severity:

Critical

Description:

Multiple critical vulnerabilities have been found in Mozilla products. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code, bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities

Affected products:

Mozilla Firefox versions 27.0.1 and earlier
Waterfox Firefox versions 27.0.1 and earlier
Mozilla Firefox ESR versions 24.3 and earlier
Mozilla Thunderbird versions 24.3 and earlier
Mozilla Seamonkey versions 2.24 and earlier
CometBird all versions

Solution:

Update to latest version
Thunderbird
Seamonkey
Firefox

Original advisories:

MFSA

Impacts:

ACE

Related products:

Mozilla Firefox

CVE-IDS:

CVE-2014-15086.8Critical
CVE-2014-14976.8Critical
CVE-2014-14966.9Critical
CVE-2014-14949.3Critical
CVE-2014-15097.6Critical
CVE-2014-15056.8Critical
CVE-2014-14939.3Critical