CVE-2014-1576
Published Oct 15, 2014
Last updated 25 days ago
Overview
- Description
- Heap-based buffer overflow in the nsTransformedTextRun function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to execute arbitrary code via Cascading Style Sheets (CSS) token sequences that trigger changes to capitalization style.
- Source
- security@mozilla.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:31.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "707DE052-DE3E-4FC3-994C-52FF7B5373C1"
},
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:31.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "547FD734-8E0C-452A-AB2E-5F7307B42CEB"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:31.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C11F024A-A8B7-405B-8A13-4BF406FBDB22"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:31.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D81A3698-797C-4CD9-BB02-A9182E0A6E11"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97A0B769-5287-4E95-874B-F1D7FC41C7AF",
"versionEndIncluding": "32.0"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:30.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "38EBC9E7-46AD-4DCD-AA7B-5071F55E3755"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:31.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C11F024A-A8B7-405B-8A13-4BF406FBDB22"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:31.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D81A3698-797C-4CD9-BB02-A9182E0A6E11"
}
],
"operator": "OR"
}
]
}
]