CVE-2014-1494

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Risk Information

Base Score

8.8

MODERATE

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.556

Associated Vulnerability

Vulnerability	OS Platform
Multiple vulnerabilities affected in Mozilla Firefox (x64) 27.0.1	Windows
Multiple vulnerabilities affected in Mozilla_Firefox 27.0.1	Windows
Multiple vulnerabilities affected in SeaMonkey 2.9.1	Windows
Multiple Vulnerabilities are affected in Mozilla Firefox (x64) 27.0.1	Windows
Multiple Vulnerabilities are affected in Mozilla_Firefox 27.0.1	Windows
Multiple vulnerabilities are fixed in Mozilla Firefox For Mac (128.0)	Mac
Multiple vulnerabilities are fixed in Mozilla Firefox For Mac (128.0.2)	Mac
Multiple vulnerabilities are fixed in Mozilla Firefox For Mac (128.0.3)	Mac
Multiple vulnerabilities are fixed in Mozilla Thunderbird For Mac 24.4	Mac
Multiple Vulnerabilities are affected in Mozilla Firefox for Mac 27.0.1	Mac
Multiple Vulnerabilities are affected in SeaMonkey For Mac 2.24-beta1	Mac
Multiple vulnerabilities are fixed in Mozilla Firefox For Mac 24.4	Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-343016	Mozilla Firefox (x64) (132.0.2)
PATCH-343015	Mozilla Firefox (132.0.2)
PATCH-341197	SeaMonkey (2.53.19)
PATCH-611870	Mozilla Firefox For Mac (142.0.1)
PATCH-611870	Mozilla Firefox For Mac (142.0.1)
PATCH-611870	Mozilla Firefox For Mac (142.0.1)
PATCH-611807	Mozilla Thunderbird For Mac (142.0)
PATCH-611870	Mozilla Firefox For Mac (142.0.1)
PATCH-611088	SeaMonkey For Mac (2.53.21)
PATCH-612783	Mozilla Firefox For Mac (145.0.1)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234