Lucene search
George HotzZDI-14-085HistoryApr 11, 2014 - 12:00 a.m.
(Pwn2Own) Mozilla Firefox TypedArrayObject Out-Of-Bounds Write Remote Code Execution Vulnerability
2014-04-1100:00:00
George Hotz
www.zerodayinitiative.com
20
0.077 Low
EPSS
Percentile
94.2%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of TypedArrayObjects. The issue lies in improper handling when neutering an array. An attacker can leverage this vulnerability to execute code under the context of the current process.
Related
prion
prion
Out-of-bounds
2014-03-19 10:55:00
cvelist
cvelist
CVE-2014-1514
2014-03-19 10:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-32) - Linux
2021-11-11 00:00:00
Debian Security Advisory DSA 2881-1 (iceweasel - security update)
2014-03-19 00:00:00
Debian Security Advisory DSA 2911-1 (icedove - security update)
2014-04-22 00:00:00
nvd
nvd
CVE-2014-1514
2014-03-19 10:55:06
mozilla
mozilla
Out-of-bounds write through TypedArrayObject after neutering — Mozilla
2014-03-18 00:00:00
cve
cve
CVE-2014-1514
2014-03-19 10:55:06
ubuntucve
ubuntucve
CVE-2014-1514
2014-03-18 00:00:00
nessus
nessus
Debian DSA-2881-1 : iceweasel - security update
2014-03-20 00:00:00
Debian DSA-2911-1 : icedove - security update
2014-04-23 00:00:00
CentOS 5 / 6 : thunderbird (CESA-2014:0316)
2014-03-20 00:00:00
debian
debian
[SECURITY] [DSA 2911-1] icedove security update
2014-04-22 15:25:02
[SECURITY] [DSA 2881-1] iceweasel security update
2014-03-19 14:43:46
centos
centos
firefox security update
2014-03-19 00:08:42
thunderbird security update
2014-03-19 21:09:48
osv
osv
iceweasel - security update
2014-03-19 00:00:00
icedove - security update
2014-04-22 00:00:00
veracode
veracode
Out Of Bound Reads (OOB)
2019-05-02 05:01:48
Denial Of Service (DoS)
2019-05-02 05:01:50
oraclelinux
oraclelinux
firefox security update
2014-03-18 00:00:00
thunderbird security update
2014-03-19 00:00:00
redhat
redhat
(RHSA-2014:0316) Important: thunderbird security update
2014-03-19 00:00:00
(RHSA-2014:0310) Critical: firefox security update
2014-03-18 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-03-21 00:00:00
Firefox vulnerabilities
2014-03-18 00:00:00
mageia
mageia
Updated nss, firefox and thunderbird packages fix security vulnerabilities
2014-03-20 22:33:01
Updated iceape packages fix multiple vulnerabilities
2014-03-31 23:47:52
suse
suse
MozillaFirefox: Update to version 28.0 (important)
2014-03-26 17:04:14
MozillaThunderbird,seamonkey (important)
2014-04-30 09:04:15
Security update for MozillaFirefox (important)
2014-03-21 23:04:18
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-03-19 00:00:00
securityvulns
securityvulns
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00