CVE-2014-1524: Buffer Overflow
First published: Wed Apr 30 2014(Updated: )
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether objects are XBL objects, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via crafted JavaScript code that accesses a non-XBL object as if it were an XBL object.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <29.0 | |
| Mozilla Firefox ESR | >=24.0<24.5 | |
| Mozilla SeaMonkey | <2.26 | |
| Mozilla Thunderbird | <24.5 | |
| Ubuntu Linux | =12.04 | |
| Ubuntu Linux | =12.10 | |
| Ubuntu Linux | =13.10 | |
| Ubuntu Linux | =14.04 | |
| Debian Debian Linux | =7.0 | |
| Debian Debian Linux | =8.0 | |
| redhat enterprise Linux desktop | =5.0 | |
| redhat enterprise Linux desktop | =6.0 | |
| redhat enterprise Linux eus | =6.5 | |
| redhat enterprise Linux server | =5.0 | |
| redhat enterprise Linux server | =6.0 | |
| redhat enterprise Linux server aus | =6.5 | |
| redhat enterprise Linux server eus | =6.5 | |
| redhat enterprise Linux server tus | =6.5 | |
| redhat enterprise Linux workstation | =5.0 | |
| redhat enterprise Linux workstation | =6.0 | |
| openSUSE | =11.4 | |
| openSUSE | =12.3 | |
| openSUSE | =13.1 | |
| SUSE Linux Enterprise Server | =10-sp4 | |
| SUSE Linux Enterprise Server | =11-sp1 | |
| Fedoraproject Fedora | =19 | |
| Fedoraproject Fedora | =20 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132332.html
- http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html
- http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html
- http://lists.opensuse.org/opensuse-updates/2014-05/msg00010.html
- http://lists.opensuse.org/opensuse-updates/2014-05/msg00013.html
- http://lists.opensuse.org/opensuse-updates/2014-05/msg00033.html
- http://lists.opensuse.org/opensuse-updates/2014-05/msg00040.html
- http://rhn.redhat.com/errata/RHSA-2014-0448.html
- http://rhn.redhat.com/errata/RHSA-2014-0449.html
- http://secunia.com/advisories/59866
- http://www.debian.org/security/2014/dsa-2918
- http://www.debian.org/security/2014/dsa-2924
- http://www.mozilla.org/security/announce/2014/mfsa2014-38.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.securityfocus.com/bid/67131
- http://www.securitytracker.com/id/1030163
- http://www.securitytracker.com/id/1030164
- http://www.securitytracker.com/id/1030165
- http://www.ubuntu.com/usn/USN-2185-1
- http://www.ubuntu.com/usn/USN-2189-1
- https://bugzilla.mozilla.org/show_bug.cgi?id=989183
- https://security.gentoo.org/glsa/201504-01
Frequently Asked Questions
What is the severity of CVE-2014-1524?
CVE-2014-1524 is classified as a critical vulnerability that can allow remote code execution.
How do I fix CVE-2014-1524?
To fix CVE-2014-1524, update affected software such as Mozilla Firefox, Thunderbird, or SeaMonkey to the latest versions.
Which versions are affected by CVE-2014-1524?
CVE-2014-1524 affects Mozilla Firefox versions prior to 29.0, Thunderbird versions prior to 24.5, SeaMonkey versions prior to 2.26, and specific versions of Firefox ESR.
What types of attacks can exploit CVE-2014-1524?
CVE-2014-1524 can be exploited by remote attackers to execute arbitrary code or cause a denial of service.
Is there a specific platform where CVE-2014-1524 is a concern?
CVE-2014-1524 is a concern on multiple platforms including Windows, Linux distributions such as Ubuntu and Debian, and various versions of Red Hat Linux.
- agent/weakness
- agent/severity
- agent/author
- agent/references
- agent/type
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mozilla
- canonical/mozilla firefox
- canonical/mozilla firefox esr
- version/mozilla firefox esr/24.0
- canonical/mozilla seamonkey
- canonical/mozilla thunderbird
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/12.04
- version/ubuntu linux/12.10
- version/ubuntu linux/13.10
- version/ubuntu linux/14.04
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/7.0
- version/debian debian linux/8.0
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/5.0
- version/redhat enterprise linux desktop/6.0
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/6.5
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/5.0
- version/redhat enterprise linux server/6.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/6.5
- canonical/redhat enterprise linux server eus
- version/redhat enterprise linux server eus/6.5
- canonical/redhat enterprise linux server tus
- version/redhat enterprise linux server tus/6.5
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/5.0
- version/redhat enterprise linux workstation/6.0
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- version/opensuse/12.3
- version/opensuse/13.1
- vendor/suse
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp4
- version/suse linux enterprise server/11-sp1
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/19
- version/fedoraproject fedora/20