Kaspersky ID:
KLA10120
Дата обнаружения:
18/03/2014
Обновлено:
22/01/2024

Описание

Multiple critical vulnerabilities have been found in Mozilla products. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code, bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities

  1. Vectors related to the SVG filter can be exploited remotely via timing attacks;
  2. Multiple unknown vulnerabilities can be exploited remotely via unknown vectors;
  3. Vectors related to unknown applications can be exploited locally via update content manipulations;
  4. Vectors related to DecodeAudioData can be exploited remotely via a specially designed WAV file;
  5. Vectors related to MathML polygon rendering can be exploited remotely via unknown applications;
  6. A buffer overflow can be exploited remotely via a specially designed extension.

Первичный источник обнаружения

Связанные продукты

Список CVE

  • CVE-2014-1508
    high
  • CVE-2014-1497
    high
  • CVE-2014-1496
    warning
  • CVE-2014-1494
    critical
  • CVE-2014-1509
    high
  • CVE-2014-1505
    warning
  • CVE-2014-1493
    critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.