Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog
Консоль
Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog

exploitDog

ubuntu Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2014-1523

ΠžΠΏΡƒΠ±Π»ΠΈΠΊΠΎΠ²Π°Π½ΠΎ: 30 Π°ΠΏΡ€. 2014
Π˜ΡΡ‚ΠΎΡ‡Π½ΠΈΠΊ: ubuntu
ΠŸΡ€ΠΈΠΎΡ€ΠΈΡ‚Π΅Ρ‚: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5

ОписаниС

Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG image.

Π Π΅Π»ΠΈΠ·Π‘Ρ‚Π°Ρ‚ΡƒΡΠŸΡ€ΠΈΠΌΠ΅Ρ‡Π°Π½ΠΈΠ΅
devel

not-affected

29.0+build1-0ubuntu0.14.04.2
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [29.0+build1-0ubuntu0.14.04.2]]
lucid

ignored

end of life
precise

released

29.0+build1-0ubuntu0.12.04.2
quantal

released

29.0+build1-0ubuntu0.12.10.3
saucy

released

29.0+build1-0ubuntu0.13.10.3
trusty

released

29.0+build1-0ubuntu0.14.04.2
trusty/esm

DNE

trusty was released [29.0+build1-0ubuntu0.14.04.2]
upstream

released

29.0

ΠŸΠΎΠΊΠ°Π·Ρ‹Π²Π°Ρ‚ΡŒ ΠΏΠΎ

Π Π΅Π»ΠΈΠ·Π‘Ρ‚Π°Ρ‚ΡƒΡΠŸΡ€ΠΈΠΌΠ΅Ρ‡Π°Π½ΠΈΠ΅
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1:24.5.0+build1-0ubuntu0.14.04.1]]
lucid

ignored

end of life
precise

released

1:24.5.0+build1-0ubuntu0.12.04.1
quantal

released

1:24.5.0+build1-0ubuntu0.12.10.1
saucy

released

1:24.5.0+build1-0ubuntu0.13.10.1
trusty

released

1:24.5.0+build1-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [1:24.5.0+build1-0ubuntu0.14.04.1]
upstream

released

24.5.0

ΠŸΠΎΠΊΠ°Π·Ρ‹Π²Π°Ρ‚ΡŒ ΠΏΠΎ

Бсылки Π½Π° источники

EPSS

ΠŸΡ€ΠΎΡ†Π΅Π½Ρ‚ΠΈΠ»ΡŒ: 67%
0.0054
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

БвязанныС уязвимости

redhat Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2014-1523

redhat
большС 11 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG image.

nvd Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2014-1523

CVSS3: 6.5
nvd
большС 11 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG image.

debian Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2014-1523

CVSS3: 6.5
debian
большС 11 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

Heap-based buffer overflow in the read_u32 function in Mozilla Firefox ...

github Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

GHSA-2gmr-x2wc-4g5j

CVSS3: 6.5
github
большС 3 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG image.

fstec Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

BDU:2015-00072

fstec
большС 11 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ ΠΏΡ€ΠΎΠ³Ρ€Π°ΠΌΠΌΠ½ΠΎΠ³ΠΎ ΠΏΠ°ΠΊΠ΅Ρ‚Π° SeaMonkey, ΠΏΠΎΠ·Π²ΠΎΠ»ΡΡŽΡ‰Π°Ρ ΡƒΠ΄Π°Π»Π΅Π½Π½ΠΎΠΌΡƒ Π·Π»ΠΎΡƒΠΌΡ‹ΡˆΠ»Π΅Π½Π½ΠΈΠΊΡƒ Π²Ρ‹ΠΏΠΎΠ»Π½ΠΈΡ‚ΡŒ ΠΏΡ€ΠΎΠΈΠ·Π²ΠΎΠ»ΡŒΠ½Ρ‹ΠΉ ΠΊΠΎΠ΄ ΠΈΠ»ΠΈ Π²Ρ‹Π·Π²Π°Ρ‚ΡŒ ΠΎΡ‚ΠΊΠ°Π· Π² обслуТивании

EPSS

ΠŸΡ€ΠΎΡ†Π΅Π½Ρ‚ΠΈΠ»ΡŒ: 67%
0.0054
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ CVE-2014-1523