CVE-2014-1564
Mozilla Firefox 9.0.1 / Thunderbird 3.1.20 - Information Disclosure
Severity Score
4.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do not properly initialize memory for GIF rendering, which allows remote attackers to obtain sensitive information from process memory via crafted web script that interacts with a CANVAS element associated with a malformed GIF image.
Mozilla Firefox anterior a 32.0, Firefox ESR 31.x anterior a 31.1 y Thunderbird 31.x anterior a 31.1 no inicializa debidamente la memoria para la renderización GIF, lo que permite a atacantes remotos obtener información sensible de la memoria de procesos a través de secuencias de comandos web manipuladas que interactúan con un elemento CANVAS asociado con un imagen GIF malformado.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-01-16 CVE Reserved
- 2014-09-02 CVE Published
- 2014-09-02 First Exploit
- 2024-08-06 CVE Updated
- 2024-09-01 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-824: Access of Uninitialized Pointer
CAPEC
References (17)
| URL | Tag | Source |
|---|---|---|
| http://packetstormsecurity.com/files/128132/Mozilla-Firefox-Secret-Leak.html | X_refsource_misc |
|
| http://seclists.org/fulldisclosure/2014/Sep/18 | Mailing List |
|
| http://secunia.com/advisories/60148 | Third Party Advisory | |
| http://secunia.com/advisories/61114 | Third Party Advisory | |
| http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html | X_refsource_confirm |
|
| http://www.securityfocus.com/archive/1/533357/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/69525 | Vdb Entry | |
| http://www.securitytracker.com/id/1030793 | Vdb Entry | |
| http://www.securitytracker.com/id/1030794 | Vdb Entry | |
| https://bugzilla.mozilla.org/show_bug.cgi?id=1045977 | Issue Tracking |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/39295 | 2014-09-02 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Opensuse Search vendor "Opensuse" | Evergreen Search vendor "Opensuse" for product "Evergreen" | 11.4 Search vendor "Opensuse" for product "Evergreen" and version "11.4" | - |
Affected
| ||||||
| Opensuse Search vendor "Opensuse" | Opensuse Search vendor "Opensuse" for product "Opensuse" | 12.3 Search vendor "Opensuse" for product "Opensuse" and version "12.3" | - |
Affected
| ||||||
| Opensuse Search vendor "Opensuse" | Opensuse Search vendor "Opensuse" for product "Opensuse" | 13.1 Search vendor "Opensuse" for product "Opensuse" and version "13.1" | - |
Affected
| ||||||
| Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | <= 31.1.0 Search vendor "Mozilla" for product "Firefox" and version " <= 31.1.0" | - |
Affected
| ||||||
| Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 30.0 Search vendor "Mozilla" for product "Firefox" and version "30.0" | - |
Affected
| ||||||
| Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 31.0 Search vendor "Mozilla" for product "Firefox" and version "31.0" | - |
Affected
| ||||||
| Mozilla Search vendor "Mozilla" | Firefox Esr Search vendor "Mozilla" for product "Firefox Esr" | 31.0 Search vendor "Mozilla" for product "Firefox Esr" and version "31.0" | - |
Affected
| ||||||
| Mozilla Search vendor "Mozilla" | Thunderbird Search vendor "Mozilla" for product "Thunderbird" | 31.0 Search vendor "Mozilla" for product "Thunderbird" and version "31.0" | - |
Affected
| ||||||