Lucene search

K

PRIOn knowledge basePRION:CVE-2014-1538

HistoryJun 11, 2014 - 10:57 a.m.

Design/Logic Flaw

2014-06-1110:57:00

PRIOn knowledge base

www.prio-n.com

4

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.078 Low

EPSS

Percentile

94.0%

Use-after-free vulnerability in the nsTextEditRules::CreateMozBR function in Mozilla Firefox before 30.0, Firefox ESR 24.x before 24.6, and Thunderbird before 24.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

CPENameOperatorVersion
firefoxle29.0.1
firefox_esreq24.5
firefox_esreq24.2
firefox_esreq24.0
firefox_esreq24.0.2
firefox_esreq24.1.0
firefox_esreq24.4
firefox_esreq24.3
firefox_esreq24.0.1
firefox_esreq24.1.1

Rows per page:

1-10 of 181

References

linux.oracle.com/errata/ELSA-2014-0741.html

linux.oracle.com/errata/ELSA-2014-0742.html

lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html

lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html

lists.opensuse.org/opensuse-updates/2014-06/msg00040.html

lists.opensuse.org/opensuse-updates/2014-07/msg00001.html

lists.opensuse.org/opensuse-updates/2014-07/msg00004.html

rhn.redhat.com/errata/RHSA-2014-0741.html

rhn.redhat.com/errata/RHSA-2014-0742.html

secunia.com/advisories/58984

secunia.com/advisories/59052

secunia.com/advisories/59149

secunia.com/advisories/59150

secunia.com/advisories/59165

secunia.com/advisories/59169

secunia.com/advisories/59170

secunia.com/advisories/59171

secunia.com/advisories/59229

secunia.com/advisories/59275

secunia.com/advisories/59328

secunia.com/advisories/59377

secunia.com/advisories/59387

secunia.com/advisories/59425

secunia.com/advisories/59486

secunia.com/advisories/59866

www.debian.org/security/2014/dsa-2955

www.debian.org/security/2014/dsa-2960

www.mozilla.org/security/announce/2014/mfsa2014-49.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.securityfocus.com/bid/67976

www.securitytracker.com/id/1030386

www.securitytracker.com/id/1030388

www.ubuntu.com/usn/USN-2243-1

www.ubuntu.com/usn/USN-2250-1

bugzilla.mozilla.org/show_bug.cgi?id=1005584

bugzilla.redhat.com/show_bug.cgi?id=1107421

security.gentoo.org/glsa/201504-01

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.078 Low

EPSS

Percentile

94.0%

Related for PRION:CVE-2014-1538

cve1 ubuntucve1 openvas33 veracode2 nessus26 centos2 mageia2 oraclelinux2 redhat2 mozilla1 ubuntu2 osv2 debian2 suse6 ibm2 securityvulns2 gentoo1