返回 CVE 瀏覽器

CVE-2014-1553

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1920%

EPSS Percentile26.18th

Published2014年9月3日

Last Modified2026年5月6日

Vulnerability Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Affected Platforms (CPE)

💻

Opensuse

Evergreen

= 11.4

💻

Opensuse

Opensuse

= 12.3

💻

Opensuse

Opensuse

= 13.1

📦

Mozilla

Firefox

<= 31.1.0

📦

Mozilla

Firefox

= 30.0

📦

Mozilla

Firefox

= 31.0

📦

Mozilla

Thunderbird

= 31.0

References & Advisories

🔗 http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00003.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

🔗 http://lists.opensuse.org/opensuse-updates/2014-09/msg00011.html

🔗 http://secunia.com/advisories/60148

🔗 http://secunia.com/advisories/61114

🔗 http://www.mozilla.org/security/announce/2014/mfsa2014-67.html

🔗 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

相關漏洞威脅

CVE-2015-22047.5

Evergreen before 2.5.9, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to bypass an intended access restrictio...

CVE-2013-74356.5

The open-ils.pcrud endpoint in Evergreen before 2.5.9, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to obtai...

CVE-2015-22036.5

Evergreen 2.5.9, 2.6.7, and 2.7.4 allows remote authenticated users with STAFF_LOGIN permission to obtain sensitive settings histo...

CVE-2014-16265.0

XML External Entity (XXE) vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and...