CVE-2014-1532

critical
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Use-after-free vulnerability in the nsHostResolver::ConditionallyRefreshRecord function in libxul.so in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors related to host resolution.

References

http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132332.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html

http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html

http://lists.opensuse.org/opensuse-updates/2014-05/msg00010.html

http://lists.opensuse.org/opensuse-updates/2014-05/msg00013.html

http://lists.opensuse.org/opensuse-updates/2014-05/msg00033.html

http://lists.opensuse.org/opensuse-updates/2014-05/msg00040.html

http://rhn.redhat.com/errata/RHSA-2014-0448.html

http://rhn.redhat.com/errata/RHSA-2014-0449.html

http://secunia.com/advisories/59866

http://www.debian.org/security/2014/dsa-2918

http://www.debian.org/security/2014/dsa-2924

http://www.mozilla.org/security/announce/2014/mfsa2014-46.html

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://www.securityfocus.com/bid/67130

http://www.securitytracker.com/id/1030163

http://www.securitytracker.com/id/1030164

http://www.securitytracker.com/id/1030165

http://www.ubuntu.com/usn/USN-2185-1

http://www.ubuntu.com/usn/USN-2189-1

https://bugzilla.mozilla.org/show_bug.cgi?id=966006

https://security.gentoo.org/glsa/201504-01

Details

Source: MITRE

Published: 2014-04-30

Updated: 2020-08-06

Type: CWE-416

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 3.9

Severity: CRITICAL

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:fedoraproject:fedora:19:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

Configuration 4

OR

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 5

OR

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_eus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Configuration 6

OR

cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp4:*:*:ltss:*:*:*

cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:ltss:*:*:*

Tenable Plugins

View all (34 total)

IDNameProductFamilySeverity
701244Mozilla Firefox ESR < 24.5 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
83624SUSE SLES10 Security Update : Mozilla Firefox (SUSE-SU-2014:0727-1)NessusSuSE Local Security Checks
critical
83622SUSE SLES10 Security Update : Mozilla Firefox (SUSE-SU-2014:0665-2)NessusSuSE Local Security Checks
critical
83621SUSE SLES11 Security Update : Mozilla Firefox (SUSE-SU-2014:0665-1)NessusSuSE Local Security Checks
critical
82632GLSA-201504-01 : Mozilla Products: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
75357openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2014:0640-1)NessusSuSE Local Security Checks
critical
75352openSUSE Security Update : seamonkey (openSUSE-SU-2014:0629-1)NessusSuSE Local Security Checks
critical
75346openSUSE Security Update : MozillaFirefox (openSUSE-SU-2014:0599-1)NessusSuSE Local Security Checks
critical
74006SuSE 11.3 Security Update : Mozilla Firefox (SAT Patch Number 9185)NessusSuSE Local Security Checks
critical
73869Debian DSA-2924-1 : icedove - security updateNessusDebian Local Security Checks
critical
8215Mozilla Thunderbird < 24.5 Multiple VulnerabilitiesNessus Network MonitorSMTP Clients
high
8214SeaMonkey < 2.26 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
8213Mozilla Firefox < 29.0 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
73848Fedora 19 : firefox-29.0-5.fc19 / thunderbird-24.5.0-1.fc19 / xulrunner-29.0-1.fc19 (2014-5829)NessusFedora Local Security Checks
critical
73844Debian DSA-2918-1 : iceweasel - security updateNessusDebian Local Security Checks
critical
73819Fedora 20 : firefox-29.0-5.fc20 / thunderbird-24.5.0-1.fc20 / xulrunner-29.0-1.fc20 (2014-5833)NessusFedora Local Security Checks
critical
73803Ubuntu 12.04 LTS / 12.10 / 13.10 / 14.04 LTS : thunderbird vulnerabilities (USN-2189-1)NessusUbuntu Local Security Checks
critical
73798Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20140429)NessusScientific Linux Local Security Checks
critical
73797Scientific Linux Security Update : firefox on SL5.x, SL6.x i386/x86_64 (20140429)NessusScientific Linux Local Security Checks
critical
73795Oracle Linux 6 : thunderbird (ELSA-2014-0449)NessusOracle Linux Local Security Checks
critical
73794Oracle Linux 5 / 6 : firefox (ELSA-2014-0448)NessusOracle Linux Local Security Checks
critical
73791CentOS 5 / 6 : thunderbird (CESA-2014:0449)NessusCentOS Local Security Checks
critical
73790CentOS 5 / 6 : firefox (CESA-2014:0448)NessusCentOS Local Security Checks
critical
73786Ubuntu 12.04 LTS / 12.10 / 13.10 / 14.04 LTS : firefox vulnerabilities (USN-2185-1)NessusUbuntu Local Security Checks
critical
73782RHEL 5 / 6 : thunderbird (RHSA-2014:0449)NessusRed Hat Local Security Checks
critical
73781RHEL 5 / 6 : firefox (RHSA-2014:0448)NessusRed Hat Local Security Checks
critical
73779FreeBSD : mozilla -- multiple vulnerabilities (985d4d6c-cfbd-11e3-a003-b4b52fce4ce8)NessusFreeBSD Local Security Checks
critical
73771SeaMonkey < 2.26 Multiple VulnerabilitiesNessusWindows
critical
73770Mozilla Thunderbird < 24.5 Multiple VulnerabilitiesNessusWindows
critical
73769Firefox < 29.0 Multiple VulnerabilitiesNessusWindows
critical
73768Firefox ESR 24.x < 24.5 Multiple VulnerabilitiesNessusWindows
critical
73767Thunderbird < 24.5 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
73766Firefox < 29.0 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
73765Firefox ESR 24.x < 24.5 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical