VYPR
Unrated severityNVD Advisory· Published Sep 3, 2014· Updated Jun 17, 2026

CVE-2014-1567

CVE-2014-1567

Description

Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Firefox before 32.0, Firefox ESR 24.x before 24.8 and 31.x before 31.1, and Thunderbird 24.x before 24.8 and 31.x before 31.1 allows remote attackers to execute arbitrary code via text that is improperly handled during the interaction between directionality resolution and layout.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

30
  • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 14 more
    • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=31.1.0
    • cpe:2.3:a:mozilla:firefox:24.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:24.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:24.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:24.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:24.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:30.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:31.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox_esr:24.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox_esr:24.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox_esr:24.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox_esr:24.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox_esr:24.6:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox_esr:24.7:*:*:*:*:*:*:*
    • (no CPE)range: <32.0
  • cpe:2.3:a:mozilla:thunderbird:24.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:mozilla:thunderbird:24.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.6:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:24.7:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:thunderbird:31.0:*:*:*:*:*:*:*
    • (no CPE)range: 24.x <24.8, 31.x <31.1
  • osv-coords3 versions
    < 128.5.1-1.1+ 2 more
    • (no CPE)range: < 128.5.1-1.1
    • (no CPE)range: < 50.1.0-1.1
    • (no CPE)range: < 45.5.1-1.1

Patches

Vulnerability mechanics

References

20

News mentions

0

No linked articles in our index yet.