VDB
CVE-2014-1486
CVE-2014-1486
PUBLISHED
Reported by mozilla · Published February 6, 2014
Use-after-free vulnerability in the imgRequestProxy function in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving unspecified Content-Type values for image data.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | *, n/a |
Timeline
- Feb 6, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
- Oct 29, 2023 EPSS Score
References
- USN-2119-1 vendor-advisoryx_refsource_UBUNTU
- x_refsource_CONFIRM
- 1029721 vdb-entryx_refsource_SECTRACK
- x_refsource_CONFIRM
- openSUSE-SU-2014:0212 vendor-advisoryx_refsource_SUSE
- 1029717 vdb-entryx_refsource_SECTRACK
- x_refsource_CONFIRM
- RHSA-2014:0132 vendor-advisoryx_refsource_REDHAT
- 56922 third-party-advisoryx_refsource_SECUNIA
- 56787 third-party-advisoryx_refsource_SECUNIA
- 1029720 vdb-entryx_refsource_SECTRACK
- 56858 third-party-advisoryx_refsource_SECUNIA
- DSA-2858 vendor-advisoryx_refsource_DEBIAN
- 56763 third-party-advisoryx_refsource_SECUNIA
- USN-2102-2 vendor-advisoryx_refsource_UBUNTU
- RHSA-2014:0133 vendor-advisoryx_refsource_REDHAT
- GLSA-201504-01 vendor-advisoryx_refsource_GENTOO
- x_refsource_CONFIRM
- 102872 vdb-entryx_refsource_OSVDB
- x_refsource_CONFIRM
…and 13 more