1. Home
  2. Vulnerabilities
  3. CVE-2014-1575

CVE-2014-1575

CVSS v2.0 7.5 (High)
75% Progress
EPSS 5.77 % (94th)
5.77% Progress
Affected Products 1
Advisories 3
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 33.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to improper interaction between threading and garbage collection in the GCRuntime::triggerGC function in js/src/jsgc.cpp, and unknown other vectors.

Weaknesses
CWE-264
Permissions, Privileges, and Access Controls
CVE Status
PUBLISHED
CNA
Mozilla Corporation
Published Date
2014-10-15 10:55:06
(10 years ago)
Updated Date
2016-12-22 02:59:13
(7 years ago)

Affected Products

Mozilla

Configuration #1

    CPE23 From Up To
  Mozilla Firefox 32.0 and prior versions cpe:2.3:a:mozilla:firefox <= 32.0
  Mozilla Firefox 30.0 cpe:2.3:a:mozilla:firefox:30.0
  Mozilla Firefox 31.0 cpe:2.3:a:mozilla:firefox:31.0
  Mozilla Firefox 31.1.0 cpe:2.3:a:mozilla:firefox:31.1.0