Out-of-Bounds Write Vulnerability in Mozilla Netscape Portable Runtime
CVE-2014-1545

Currently unrated

Key Information:

Vendor: Mozilla
Status: Netscape Portable Runtime
Vendor: CVE Published:; 11 June 2014

What is CVE-2014-1545?

The Mozilla Netscape Portable Runtime is susceptible to an out-of-bounds write vulnerability that can be exploited by remote attackers. By manipulating inputs for the sprintf and console functions, attackers can execute arbitrary code on the host system or initiate denial of service attacks. It is crucial for users of affected software to apply available patches and monitor for signs of exploitation.

References

http://www.oracle.com/technetwork/topics/security/ovmbull...

x_refsource_CONFIRM

http://secunia.com/advisories/59229

third-party-advisoryx_refsource_SECUNIA

http://lists.opensuse.org/opensuse-updates/2014-06/msg000...

vendor-advisoryx_refsource_SUSE

Timeline

Vulnerability published
Jun 11, 2014
Vulnerability Reserved
Jan 16, 2014