製品・ソフトウェアに関する情報

JVN脆弱性詳細

Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性

Title	Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性
Summary	Mozilla Firefox には、サービス運用妨害 (メモリ破損およびアプリケーションクラッシュ) 状態にされる、または任意のコードを実行される脆弱性が存在します。
Possible impacts	第三者により、サービス運用妨害 (メモリ破損およびアプリケーションクラッシュ) 状態にされる、または任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	June 10, 2014, midnight
Registration Date	June 12, 2014, 5:53 p.m.
Last Update	June 12, 2014, 5:53 p.m.

CVSS2.0 : 危険
Score	10
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected System

Mozilla Foundation

Mozilla Firefox 30.0 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2014-1534	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1534
National Vulnerability Database (NVD)
2	CVE-2014-1534	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1534

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-119	https://jvndb.jvn.jp/ja/cwe/CWE-119.html

ベンダー情報

No	Name	URL
Mozilla Foundation Security Advisory
1	MFSA 2014-48	http://www.mozilla.org/security/announce/2014/mfsa2014-48.html
Mozilla Foundation セキュリティアドバイザリ
2	MFSA 2014-48	http://www.mozilla-japan.org/security/announce/2014/mfsa2014-48.html

Change Log

No	Changed Details	Date of change
0	[2014年06月12日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2014-1534

Summary	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 30.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Publication Date	June 11, 2014, 7:57 p.m.
Registration Date	Jan. 26, 2021, 3:06 p.m.
Last Update	Nov. 21, 2024, 11:04 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox::::::::			29.0.1

Related information, measures and tools

No	URL	タグ
1	http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html
2	http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html
3	http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html
4	http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html
5	http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html
6	http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html
7	http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html
8	http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html
9	http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html
10	http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html
11	http://secunia.com/advisories/59052
12	http://secunia.com/advisories/59052
13	http://secunia.com/advisories/59171
14	http://secunia.com/advisories/59171
15	http://secunia.com/advisories/59229
16	http://secunia.com/advisories/59229
17	http://secunia.com/advisories/59377
18	http://secunia.com/advisories/59377
19	http://secunia.com/advisories/59387
20	http://secunia.com/advisories/59387
21	http://secunia.com/advisories/59425
22	http://secunia.com/advisories/59425
23	http://secunia.com/advisories/59486
24	http://secunia.com/advisories/59486
25	http://secunia.com/advisories/59866
26	http://secunia.com/advisories/59866
27	http://www.mozilla.org/security/announce/2014/mfsa2014-48.html	Vendor Advisory
28	http://www.mozilla.org/security/announce/2014/mfsa2014-48.html	Vendor Advisory
29	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
30	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
31	http://www.securityfocus.com/bid/67964
32	http://www.securityfocus.com/bid/67964
33	http://www.securitytracker.com/id/1030386
34	http://www.securitytracker.com/id/1030386
35	http://www.securitytracker.com/id/1030388
36	http://www.securitytracker.com/id/1030388
37	http://www.ubuntu.com/usn/USN-2243-1
38	http://www.ubuntu.com/usn/USN-2243-1
39	https://bugzilla.mozilla.org/show_bug.cgi?id=1000598
40	https://bugzilla.mozilla.org/show_bug.cgi?id=1000598
41	https://bugzilla.mozilla.org/show_bug.cgi?id=1000960
42	https://bugzilla.mozilla.org/show_bug.cgi?id=1000960
43	https://bugzilla.mozilla.org/show_bug.cgi?id=1002340
44	https://bugzilla.mozilla.org/show_bug.cgi?id=1002340
45	https://bugzilla.mozilla.org/show_bug.cgi?id=1005578
46	https://bugzilla.mozilla.org/show_bug.cgi?id=1005578
47	https://bugzilla.mozilla.org/show_bug.cgi?id=1007223
48	https://bugzilla.mozilla.org/show_bug.cgi?id=1007223
49	https://bugzilla.mozilla.org/show_bug.cgi?id=969517
50	https://bugzilla.mozilla.org/show_bug.cgi?id=969517
51	https://bugzilla.mozilla.org/show_bug.cgi?id=969549
52	https://bugzilla.mozilla.org/show_bug.cgi?id=969549
53	https://bugzilla.mozilla.org/show_bug.cgi?id=973874
54	https://bugzilla.mozilla.org/show_bug.cgi?id=973874
55	https://bugzilla.mozilla.org/show_bug.cgi?id=978652
56	https://bugzilla.mozilla.org/show_bug.cgi?id=978652
57	https://bugzilla.mozilla.org/show_bug.cgi?id=990868
58	https://bugzilla.mozilla.org/show_bug.cgi?id=990868
59	https://bugzilla.mozilla.org/show_bug.cgi?id=995816
60	https://bugzilla.mozilla.org/show_bug.cgi?id=995816
61	https://bugzilla.mozilla.org/show_bug.cgi?id=995817
62	https://bugzilla.mozilla.org/show_bug.cgi?id=995817
63	https://bugzilla.mozilla.org/show_bug.cgi?id=996536
64	https://bugzilla.mozilla.org/show_bug.cgi?id=996536
65	https://security.gentoo.org/glsa/201504-01
66	https://security.gentoo.org/glsa/201504-01

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html