virus logo Endpoint Vulnerability

Mozilla Firefox CVE-2014-1590 Input Validation Bypass Vulnerability

description-logoDescription

Passing a crafted JavaScript object to XMLHttpRequest that mimics an input stream causes a crash, leading to denial of service in Firefox, Firefox ESR, Firefox OS, SeaMonkey, and Thunderbird.

affected-products-logoAffected Applications

Firefox
Firefox ESR

Version Updates

Date Version Status Detail
2019-09-11 1.00194
Modified
 Firefox,Firefox ESR
2019-01-08 1.00178
Modified
 Firefox,Firefox ESR
2018-04-10 1.00157
Modified
 Firefox,Firefox ESR
2018-04-05 1.00158
Modified
 Firefox,Firefox ESR
2017-08-15 1.00144
Modified
 Firefox,Firefox ESR
2017-07-25 1.00142
Modified
 Firefox,Firefox ESR

References

https://www.mozilla.org/en-US/security/advisories/mfsa2014-85
ID 20938
Created Jul 11, 2018
Description
Updated		 Jan 10, 2026
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Mozilla
Patch auto
Application Firefox , Firefox ESR