CVE-2014-1496 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2014-1496

Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 might allow local users to gain privileges by modifying the extracted Mar contents during an update.

Published: Mar 19, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-1496
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
mozilla / seamonkey	-	2.25
mozilla / firefox_esr	24.0	24.4
mozilla / firefox	-	28.0
mozilla / thunderbird	-	24.4
suse / suse_linux_enterprise_software_development_kit	11.0-sp3	11.0-sp3.x
suse / suse_linux_enterprise_server	11-sp3	11-sp3.x
suse / suse_linux_enterprise_desktop	11-sp3	11-sp3.x