Unrated severityNVD Advisory· Published Jun 11, 2014· Updated Jun 17, 2026
CVE-2014-1545
CVE-2014-1545
Description
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
50cpe:2.3:a:mozilla:netscape_portable_runtime:*:*:*:*:*:*:*:*+ 45 more
- cpe:2.3:a:mozilla:netscape_portable_runtime:*:*:*:*:*:*:*:*range: <=4.10.5
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.10:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.10.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.6.8:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.7:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.8:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.8.9:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:netscape_portable_runtime:4.9.6:*:*:*:*:*:*:*
- (no CPE)range: <4.10.6
- osv-coords4 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/mozilla-nspr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweed
< 128.5.1-1.1+ 3 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 50.1.0-1.1
- (no CPE)range: < 4.12-2.1
- (no CPE)range: < 45.5.1-1.1
Patches
Vulnerability mechanics
References
27- www.mozilla.org/security/announce/2014/mfsa2014-55.htmlnvdVendor Advisory
- kb.juniper.net/InfoCenter/indexnvd
- lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.htmlnvd
- lists.opensuse.org/opensuse-updates/2014-06/msg00040.htmlnvd
- lists.opensuse.org/opensuse-updates/2014-07/msg00001.htmlnvd
- lists.opensuse.org/opensuse-updates/2014-07/msg00004.htmlnvd
- secunia.com/advisories/58984nvd
- secunia.com/advisories/59229nvd
- secunia.com/advisories/59275nvd
- secunia.com/advisories/59318nvd
- secunia.com/advisories/59377nvd
- secunia.com/advisories/59387nvd
- secunia.com/advisories/59425nvd
- secunia.com/advisories/59486nvd
- secunia.com/advisories/59614nvd
- www.debian.org/security/2014/dsa-2955nvd
- www.debian.org/security/2014/dsa-2960nvd
- www.debian.org/security/2014/dsa-2962nvd
- www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlnvd
- www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlnvd
- www.securityfocus.com/bid/67975nvd
- www.securitytracker.com/id/1030404nvd
- www.ubuntu.com/usn/USN-2265-1nvd
- bugzilla.mozilla.org/show_bug.cginvd
- bugzilla.redhat.com/show_bug.cginvd
- security.gentoo.org/glsa/201504-01nvd
News mentions
0No linked articles in our index yet.