CVE-2014-1580 : Mozilla Firefox before 33.0 does not properly initialize memory for GIF images, which allows remote attackers to obtain

Mozilla Firefox before 33.0 does not properly initialize memory for GIF images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers a sequence of rendering operations for truncated GIF data within a CANVAS element.

Published 2014-10-15 10:55:07

Updated 2016-12-22 02:59:14

Source Mozilla Corporation

View at NVD, CVE.org

Vulnerability category: Information leak

Exploit prediction scoring system (EPSS) score for CVE-2014-1580

Probability of exploitation activity in the next 30 days: 0.42%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 71 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-1580

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2014-1580

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-1580

http://www.securityfocus.com/bid/70431

Mozilla Firefox CVE-2014-1580 Information Disclosure Vulnerability
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141085.html

[SECURITY] Fedora 20 Update: firefox-33.0-1.fc20

CVEs referencing this url
http://lists.fedoraproject.org/pipermail/package-announce/2014-November/141796.html

[SECURITY] Fedora 21 Update: firefox-33.0-1.fc21

CVEs referencing this url
http://www.securitytracker.com/id/1031028

Mozilla Firefox Bugs Let Remote Users Execute Arbitrary Code, Bypass Same Origin-Policy, and Obtain Potentially Sensitive Information - SecurityTracker

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Oracle Solaris Bulletin - April 2016

CVEs referencing this url
https://bugzilla.mozilla.org/show_bug.cgi?id=1063733

1063733 - (CVE-2014-1580) Apparent use of uninitialized memory when rendering truncated GIFs to <canvas>
https://security.gentoo.org/glsa/201504-01

Mozilla Products: Multiple vulnerabilities (GLSA 201504-01) — Gentoo security

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2014-11/msg00001.html

openSUSE-SU-2014:1344-1: moderate: update for firefox, mozilla-nspr, moz

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2014-11/msg00002.html

openSUSE-SU-2014:1345-1: moderate: update for firefox, mozilla-nspr, moz

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2372-1

USN-2372-1: Firefox vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.mozilla.org/security/announce/2014/mfsa2014-78.html

Further uninitialized memory use during GIF rendering — Mozilla
Vendor Advisory

Products affected by CVE-2014-1580

Mozilla » Firefox
Versions up to, including, (<=) 32.0
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 31.0
cpe:2.3:a:mozilla:firefox:31.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 30.0
cpe:2.3:a:mozilla:firefox:30.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 31.1.0
cpe:2.3:a:mozilla:firefox:31.1.0:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-1580

Exploit prediction scoring system (EPSS) score for CVE-2014-1580

CVSS scores for CVE-2014-1580

CWE ids for CVE-2014-1580

References for CVE-2014-1580

Products affected by CVE-2014-1580