Lucene search

MozillaCVE-2014-1547

HistoryJul 23, 2014 - 11:12 a.m.

CVE-2014-1547

2014-07-2311:12:42

mozilla

web.nvd.nist.gov

cve-2014-1547

mozilla firefox

browser engine

denial of service

memory corruption

application crash

remote attackers

arbitrary code

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

High

EPSS

0.066

Percentile

93.8%

JSON

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Affected configurations

Nvd

Node

mozillafirefoxRange≤30.0

mozillafirefox_esrMatch24.0

mozillafirefox_esrMatch24.0.1

mozillafirefox_esrMatch24.0.2

mozillafirefox_esrMatch24.1.0

mozillafirefox_esrMatch24.1.1

mozillafirefox_esrMatch24.2

mozillafirefox_esrMatch24.3

mozillafirefox_esrMatch24.4

mozillafirefox_esrMatch24.5

mozillafirefox_esrMatch24.6

mozillathunderbirdRange≤24.6

mozillathunderbirdMatch24.0

mozillathunderbirdMatch24.0.1

mozillathunderbirdMatch24.1

mozillathunderbirdMatch24.1.1

mozillathunderbirdMatch24.2

mozillathunderbirdMatch24.3

mozillathunderbirdMatch24.4

mozillathunderbirdMatch24.5

VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillafirefox_esr24.0cpe:2.3:a:mozilla:firefox_esr:24.0:*:*:*:*:*:*:*
mozillafirefox_esr24.0.1cpe:2.3:a:mozilla:firefox_esr:24.0.1:*:*:*:*:*:*:*
mozillafirefox_esr24.0.2cpe:2.3:a:mozilla:firefox_esr:24.0.2:*:*:*:*:*:*:*
mozillafirefox_esr24.1.0cpe:2.3:a:mozilla:firefox_esr:24.1.0:*:*:*:*:*:*:*
mozillafirefox_esr24.1.1cpe:2.3:a:mozilla:firefox_esr:24.1.1:*:*:*:*:*:*:*
mozillafirefox_esr24.2cpe:2.3:a:mozilla:firefox_esr:24.2:*:*:*:*:*:*:*
mozillafirefox_esr24.3cpe:2.3:a:mozilla:firefox_esr:24.3:*:*:*:*:*:*:*
mozillafirefox_esr24.4cpe:2.3:a:mozilla:firefox_esr:24.4:*:*:*:*:*:*:*
mozillafirefox_esr24.5cpe:2.3:a:mozilla:firefox_esr:24.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox	*	cpe:2.3:a:mozilla:firefox::::::::
mozilla	firefox_esr	24.0	cpe:2.3:a:mozilla:firefox_esr:24.0:::::::*
mozilla	firefox_esr	24.0.1	cpe:2.3:a:mozilla:firefox_esr:24.0.1:::::::*
mozilla	firefox_esr	24.0.2	cpe:2.3:a:mozilla:firefox_esr:24.0.2:::::::*
mozilla	firefox_esr	24.1.0	cpe:2.3:a:mozilla:firefox_esr:24.1.0:::::::*
mozilla	firefox_esr	24.1.1	cpe:2.3:a:mozilla:firefox_esr:24.1.1:::::::*
mozilla	firefox_esr	24.2	cpe:2.3:a:mozilla:firefox_esr:24.2:::::::*
mozilla	firefox_esr	24.3	cpe:2.3:a:mozilla:firefox_esr:24.3:::::::*
mozilla	firefox_esr	24.4	cpe:2.3:a:mozilla:firefox_esr:24.4:::::::*
mozilla	firefox_esr	24.5	cpe:2.3:a:mozilla:firefox_esr:24.5:::::::*