Arbitrary code execution vulnerability in Mozilla Products - MFSA 2014-89 (Mac OS X)ID: oval:org.secpod.oval:def:22307 | Date: (C)2014-12-26 (M)2023-12-07 |
Class: PATCH | Family: macos |
The host is missing a security update according to MFSA 2014-89. The update is required to fix an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to handle unknown vectors. Successful exploitation allows attackers to execute arbitrary code by leveraging an incorrect cast from the BasicThebesLayer data type to the BasicContainerLayer data type.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Product: |
Mozilla Thunderbird |
Mozilla Firefox ESR |
Mozilla Firefox |
Mozilla SeaMonkey |