CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
Percentile
90.6%
Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote
attackers to cause a denial of service (X.509 certificate parsing outage)
via a crafted certificate that does not use UTF-8 character encoding in a
required context, a different vulnerability than CVE-2014-1558.