Lucene search

MozillaCVE-2014-1562

HistorySep 03, 2014 - 10:55 a.m.

CVE-2014-1562

2014-09-0310:55:06

CWE-119

mozilla

web.nvd.nist.gov

cve-2014-1562

mozilla firefox

thunderbird

vulnerability

remote attackers

denial of service

memory corruption

application crash

arbitrary code

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.066

Percentile

93.8%

JSON

Unspecified vulnerability in the browser engine in Mozilla Firefox before 32.0, Firefox ESR 24.x before 24.8 and 31.x before 31.1, and Thunderbird 24.x before 24.8 and 31.x before 31.1 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Affected configurations

Nvd

Node

mozillafirefox_esrMatch24.0

mozillafirefox_esrMatch24.0.1

mozillafirefox_esrMatch24.0.2

mozillafirefox_esrMatch24.1.0

mozillafirefox_esrMatch24.1.1

mozillafirefox_esrMatch24.2

mozillafirefox_esrMatch24.3

mozillafirefox_esrMatch24.4

mozillafirefox_esrMatch24.5

mozillafirefox_esrMatch24.6

mozillafirefox_esrMatch24.7

mozillafirefox_esrMatch31.0

Node

mozillathunderbirdMatch24.0

mozillathunderbirdMatch24.0.1

mozillathunderbirdMatch24.1

mozillathunderbirdMatch24.1.1

mozillathunderbirdMatch24.2

mozillathunderbirdMatch24.3

mozillathunderbirdMatch24.4

mozillathunderbirdMatch24.5

mozillathunderbirdMatch24.6

mozillathunderbirdMatch24.7

mozillathunderbirdMatch31.0

Node

mozillafirefoxRange≤31.1.0

mozillafirefoxMatch30.0

mozillafirefoxMatch31.0

VendorProductVersionCPE
mozillafirefox_esr24.0cpe:2.3:a:mozilla:firefox_esr:24.0:*:*:*:*:*:*:*
mozillafirefox_esr24.0.1cpe:2.3:a:mozilla:firefox_esr:24.0.1:*:*:*:*:*:*:*
mozillafirefox_esr24.0.2cpe:2.3:a:mozilla:firefox_esr:24.0.2:*:*:*:*:*:*:*
mozillafirefox_esr24.1.0cpe:2.3:a:mozilla:firefox_esr:24.1.0:*:*:*:*:*:*:*
mozillafirefox_esr24.1.1cpe:2.3:a:mozilla:firefox_esr:24.1.1:*:*:*:*:*:*:*
mozillafirefox_esr24.2cpe:2.3:a:mozilla:firefox_esr:24.2:*:*:*:*:*:*:*
mozillafirefox_esr24.3cpe:2.3:a:mozilla:firefox_esr:24.3:*:*:*:*:*:*:*
mozillafirefox_esr24.4cpe:2.3:a:mozilla:firefox_esr:24.4:*:*:*:*:*:*:*
mozillafirefox_esr24.5cpe:2.3:a:mozilla:firefox_esr:24.5:*:*:*:*:*:*:*
mozillafirefox_esr24.6cpe:2.3:a:mozilla:firefox_esr:24.6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox_esr	24.0	cpe:2.3:a:mozilla:firefox_esr:24.0:::::::*
mozilla	firefox_esr	24.0.1	cpe:2.3:a:mozilla:firefox_esr:24.0.1:::::::*
mozilla	firefox_esr	24.0.2	cpe:2.3:a:mozilla:firefox_esr:24.0.2:::::::*
mozilla	firefox_esr	24.1.0	cpe:2.3:a:mozilla:firefox_esr:24.1.0:::::::*
mozilla	firefox_esr	24.1.1	cpe:2.3:a:mozilla:firefox_esr:24.1.1:::::::*
mozilla	firefox_esr	24.2	cpe:2.3:a:mozilla:firefox_esr:24.2:::::::*
mozilla	firefox_esr	24.3	cpe:2.3:a:mozilla:firefox_esr:24.3:::::::*
mozilla	firefox_esr	24.4	cpe:2.3:a:mozilla:firefox_esr:24.4:::::::*
mozilla	firefox_esr	24.5	cpe:2.3:a:mozilla:firefox_esr:24.5:::::::*
mozilla	firefox_esr	24.6	cpe:2.3:a:mozilla:firefox_esr:24.6:::::::*