CVE - CVE-2014-1545

CVE-ID
CVE-2014-1545	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:67975 URL:http://www.securityfocus.com/bid/67975 CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761 CONFIRM:http://www.mozilla.org/security/announce/2014/mfsa2014-55.html CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html CONFIRM:http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html CONFIRM:https://bugzilla.mozilla.org/show_bug.cgi?id=1018783 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1107432 DEBIAN:DSA-2955 URL:http://www.debian.org/security/2014/dsa-2955 DEBIAN:DSA-2960 URL:http://www.debian.org/security/2014/dsa-2960 DEBIAN:DSA-2962 URL:http://www.debian.org/security/2014/dsa-2962 GENTOO:GLSA-201504-01 URL:https://security.gentoo.org/glsa/201504-01 SECTRACK:1030404 URL:http://www.securitytracker.com/id/1030404 SECUNIA:58984 URL:http://secunia.com/advisories/58984 SECUNIA:59229 URL:http://secunia.com/advisories/59229 SECUNIA:59275 URL:http://secunia.com/advisories/59275 SECUNIA:59318 URL:http://secunia.com/advisories/59318 SECUNIA:59377 URL:http://secunia.com/advisories/59377 SECUNIA:59387 URL:http://secunia.com/advisories/59387 SECUNIA:59425 URL:http://secunia.com/advisories/59425 SECUNIA:59486 URL:http://secunia.com/advisories/59486 SECUNIA:59614 URL:http://secunia.com/advisories/59614 SUSE:SUSE-SU-2014:0824 URL:http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html SUSE:openSUSE-SU-2014:0797 URL:http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html SUSE:openSUSE-SU-2014:0819 URL:http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html SUSE:openSUSE-SU-2014:0855 URL:http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html SUSE:openSUSE-SU-2014:0858 URL:http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html UBUNTU:USN-2265-1 URL:http://www.ubuntu.com/usn/USN-2265-1
Assigning CNA
Mozilla Corporation
Date Record Created
20140116	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20140116)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2024, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.