CVE-2014-1540CVE-2014-1540

Affected configuration(s):

cpe:/a:mozilla:firefox:29.0.1

Date published: 2014-06-11T06:57:17.953-04:00

Date last modified: 2017-01-06T21:59:38.437-05:00

CVSS Score: 9.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html

Summary: Use-after-free vulnerability in the nsEventListenerManager::CompileEventHandlerInternal function in the Event Listener Manager in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted web content.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *