Description
Multiple critical vulnerabilities have been found in Mozilla products. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code, bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities
- Vectors related to the SVG filter can be exploited remotely via timing attacks;
- Multiple unknown vulnerabilities can be exploited remotely via unknown vectors;
- Vectors related to unknown applications can be exploited locally via update content manipulations;
- Vectors related to DecodeAudioData can be exploited remotely via a specially designed WAV file;
- Vectors related to MathML polygon rendering can be exploited remotely via unknown applications;
- A buffer overflow can be exploited remotely via a specially designed extension.
Original advisories
Related products
CVE list
- CVE-2014-1508 high
- CVE-2014-1497 high
- CVE-2014-1496 warning
- CVE-2014-1494 critical
- CVE-2014-1509 high
- CVE-2014-1505 warning
- CVE-2014-1493 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!