Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10445
HistoryJan 13, 2015 - 12:00 a.m.

KLA10445 ACE vulnerability in Mozilla

2015-01-1300:00:00
Kaspersky Lab
threats.kaspersky.com
165

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.937

Percentile

99.1%

JSON

Improper DOM objects interaction was found in Mozilla products. By exploiting this vulnerability malicious users can execute arbitrary code. This culnerability can be exploited remotely via unspecified vectors.

Original advisories

MFSA

Related products

Mozilla-Firefox

Mozilla-SeaMonkey

CVE list

CVE-2014-8636 critical

Solution

Update to latest versionGet Firefox

Get SeaMonkey

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Affected Products

  • Mozilla Firefox versions earlier than 35Mozilla SeaMonkey versions earlier than 2.32

Related

packetstorm 1
ubuntucve 1
openvas 18
nvd 1
checkpoint_advisories 2
exploitdb 1
zdt 1
cve 1
prion 1
mozilla 1
cvelist 1
metasploit 1
suse 6
nessus 17
archlinux 1
ubuntu 3
mageia 1
securityvulns 1
freebsd 1
googleprojectzero 1
gentoo 1
packetstorm
packetstorm
Firefox Proxy Prototype Privileged Javascript Injection
2015-03-24 00:00:00
ubuntucve
ubuntucve
CVE-2014-8636
2015-01-14 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-09) - Linux
2021-11-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0180-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0171-1)
2021-06-09 00:00:00
nvd
nvd
CVE-2014-8636
2015-01-14 11:59:05
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox XrayWrapper Policy Bypass (CVE-2014-8636)
2015-04-19 00:00:00
Mozilla Firefox Proxy Prototype Remote Code Execution (CVE-2014-8636)
2015-03-26 00:00:00
exploitdb
exploitdb
Mozilla Firefox - Proxy Prototype Privileged JavaScript Injection (Metasploit)
2015-03-24 00:00:00
zdt
zdt
Firefox Proxy Prototype Privileged Javascript Injection Exploit
2015-03-27 00:00:00
cve
cve
CVE-2014-8636
2015-01-14 11:59:05
prion
prion
Design/Logic Flaw
2015-01-14 11:59:00
mozilla
mozilla
XrayWrapper bypass through DOM objects — Mozilla
2015-01-13 00:00:00
cvelist
cvelist
CVE-2014-8636
2015-01-14 11:00:00
metasploit
metasploit
Firefox Proxy Prototype Privileged Javascript Injection
2015-03-23 18:44:41
suse
suse
Security update for Mozilla Firefox (important)
2015-01-31 01:09:23
Security update for Mozilla Firefox (important)
2015-01-29 07:06:36
Security update for Mozilla Firefox (important)
2015-01-29 07:04:56
nessus
nessus
SUSE SLES10 Security Update : Mozilla Firefox (SUSE-SU-2015:0171-1)
2015-05-20 00:00:00
SuSE 11.3 Security Update : Mozilla Firefox (SAT Patch Number 10225)
2015-02-02 00:00:00
SUSE SLES11 Security Update : Mozilla Firefox (SUSE-SU-2015:0173-1)
2015-05-20 00:00:00
archlinux
archlinux
firefox: multiple issues
2015-01-14 00:00:00
ubuntu
ubuntu
Firefox regression
2015-01-27 00:00:00
Ubufox update
2015-01-14 00:00:00
Firefox vulnerabilities
2015-01-14 00:00:00
mageia
mageia
Updated iceape package fixes security vulnerabilities
2015-01-19 19:47:36
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2015-01-19 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-01-13 00:00:00
googleprojectzero
googleprojectzero
Attacking ECMAScript Engines with Redefinition
2015-08-17 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.937

Percentile

99.1%

JSON
Related for KLA10445
packetstorm1ubuntucve1openvas18nvd1checkpoint_advisories2exploitdb1zdt1cve1prion1mozilla1cvelist1metasploit1suse6nessus17archlinux1ubuntu3mageia1securityvulns1freebsd1googleprojectzero1gentoo1