Rapid7 Vulnerability & Exploit Database

MFSA2014-01 Firefox: Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) (CVE-2014-1495)

Back to Search

MFSA2014-01 Firefox: Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) (CVE-2014-1495)

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
02/04/2014
Created
07/25/2018
Added
03/19/2014
Modified
06/17/2014

Description

Mozilla developers and community identified identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code.

Solution(s)

  • mozilla-firefox-esr-upgrade-24_3
  • mozilla-firefox-upgrade-27_0

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;