CVEブラウザに戻る

CVE-2014-1553

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1920%

EPSS Percentile26.18th

Published2014年9月3日

Last Modified2026年5月6日

Vulnerability Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Affected Platforms (CPE)

💻

Opensuse

Evergreen

= 11.4

💻

Opensuse

Opensuse

= 12.3

💻

Opensuse

Opensuse

= 13.1

📦

Mozilla

Firefox

<= 31.1.0

📦

Mozilla

Firefox

= 30.0

📦

Mozilla

Firefox

= 31.0

📦

Mozilla

Thunderbird

= 31.0

References & Advisories

🔗 http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00003.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

🔗 http://lists.opensuse.org/opensuse-updates/2014-09/msg00011.html

🔗 http://secunia.com/advisories/60148

🔗 http://secunia.com/advisories/61114

🔗 http://www.mozilla.org/security/announce/2014/mfsa2014-67.html

🔗 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

関連する脆弱性情報

CVE-2015-22047.5

Evergreen before 2.5.9, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to bypass an intended access restrictio...

CVE-2013-74356.5

The open-ils.pcrud endpoint in Evergreen before 2.5.9, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to obtai...

CVE-2015-22036.5

Evergreen 2.5.9, 2.6.7, and 2.7.4 allows remote authenticated users with STAFF_LOGIN permission to obtain sensitive settings histo...

CVE-2014-16265.0

XML External Entity (XXE) vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and...