Veracode Vulnerability DatabaseVERACODE:11416Denial Of Service
0.008 Low
EPSS
Percentile
81.9%
Mozilla Firefox is susceptible to denial of services (DoS). The attack exists because it does not filter malformed web content, allowing the attacker to inject malicious content to crash or to execute arbitrary code with the privileges of the user running Firefox.
References
lists.fedoraproject.org/pipermail/package-announce/2014-May/132332.html
lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html
lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html
lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html
lists.opensuse.org/opensuse-updates/2014-05/msg00010.html
lists.opensuse.org/opensuse-updates/2014-05/msg00013.html
lists.opensuse.org/opensuse-updates/2014-05/msg00033.html
lists.opensuse.org/opensuse-updates/2014-05/msg00040.html
rhn.redhat.com/errata/RHSA-2014-0448.html
rhn.redhat.com/errata/RHSA-2014-0449.html
secunia.com/advisories/59866
www.debian.org/security/2014/dsa-2918
www.debian.org/security/2014/dsa-2924
www.mozilla.org/security/announce/2014/mfsa2014-34.html
www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
www.securityfocus.com/bid/67123
www.securitytracker.com/id/1030163
www.securitytracker.com/id/1030164
www.ubuntu.com/usn/USN-2185-1
www.ubuntu.com/usn/USN-2189-1
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=944353
bugzilla.mozilla.org/show_bug.cgi?id=952022
bugzilla.mozilla.org/show_bug.cgi?id=966630
bugzilla.mozilla.org/show_bug.cgi?id=980537
bugzilla.mozilla.org/show_bug.cgi?id=986678
bugzilla.mozilla.org/show_bug.cgi?id=986843
bugzilla.mozilla.org/show_bug.cgi?id=991471
bugzilla.mozilla.org/show_bug.cgi?id=992968
bugzilla.mozilla.org/show_bug.cgi?id=993546
bugzilla.redhat.com/show_bug.cgi?id=1054242
rhn.redhat.com/errata/RHSA-2014-0448.html
security.gentoo.org/glsa/201504-01
www.mozilla.org/security/known-vulnerabilities/firefoxESR.html#firefox24.5
Related
