Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-1549

Опубликовано: 23 июл. 2014
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3

Описание

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via crafted audio content that is improperly handled during playback buffering.

РелизСтатусПримечание
devel

released

31.0~b9+build1-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [31.0+build1-0ubuntu0.14.04.1]]
lucid

ignored

end of life
precise

released

31.0+build1-0ubuntu0.12.04.1
trusty

released

31.0+build1-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [31.0+build1-0ubuntu0.14.04.1]
upstream

released

31.0

Показывать по

РелизСтатусПримечание
devel

released

1:31.0+build1-0ubuntu2
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1:31.0+build1-0ubuntu0.14.04.1]]
lucid

ignored

end of life
precise

released

1:31.0+build1-0ubuntu0.12.04.1
trusty

released

1:31.0+build1-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [1:31.0+build1-0ubuntu0.14.04.1]
upstream

released

31.0

Показывать по

Ссылки на источники

EPSS

Процентиль: 84%
0.02172
Низкий

9.3 Critical

CVSS2

Связанные уязвимости

redhat логотип

CVE-2014-1549

redhat
больше 11 лет назад

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via crafted audio content that is improperly handled during playback buffering.

nvd логотип

CVE-2014-1549

nvd
больше 11 лет назад

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via crafted audio content that is improperly handled during playback buffering.

debian логотип

CVE-2014-1549

debian
больше 11 лет назад

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer fun ...

github логотип

GHSA-6mr6-ghhg-rwhx

github
больше 3 лет назад

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via crafted audio content that is improperly handled during playback buffering.

fstec логотип

BDU:2015-00713

fstec
больше 11 лет назад

Уязвимость программного обеспечения Thunderbird, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 84%
0.02172
Низкий

9.3 Critical

CVSS2