CVE-2014-1564

Mozilla Firefox <32 - Info Disclosure

Title source: llm

Description

Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do not properly initialize memory for GIF rendering, which allows remote attackers to obtain sensitive information from process memory via crafted web script that interacts with a CANVAS element associated with a malformed GIF image.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michal Zalewski · javascriptremotemultiple

https://www.exploit-db.com/exploits/39295

View Code ZIP pw:eip

References (16)

[Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00003.html

[Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

[Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2014-09/msg00011.html

[Mailing List] http://seclists.org/fulldisclosure/2014/Sep/18

[Vendor Advisory] http://www.mozilla.org/security/announce/2014/mfsa2014-69.html

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

[Issue Tracking] https://bugzilla.mozilla.org/show_bug.cgi?id=1045977

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/533357/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/69525

[Third Party Advisory] https://security.gentoo.org/glsa/201504-01

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/128132/Mozilla-Firefox-Secret-Leak.html

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1030793

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1030794

[Third Party Advisory] http://secunia.com/advisories/60148

[Third Party Advisory] http://secunia.com/advisories/61114

Scores

EPSS 0.1391

EPSS Percentile 94.3%

Details

CWE

CWE-824

Status published

Products (7)

mozilla/firefox 30.0

mozilla/firefox 31.0

mozilla/firefox < 31.1.0

mozilla/thunderbird 31.0

opensuse/evergreen 11.4

opensuse/opensuse 12.3

opensuse/opensuse 13.1

Published Sep 03, 2014

Tracked Since Feb 18, 2026