Details of VAR-201403-0292

ID

VAR-201403-0292

CVE

CVE-2014-1714

TITLE

plural OS Run on Google Chrome of ui/base/clipboard/scoped_clipboard_writer.cc Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2014-001697

DESCRIPTION

The ScopedClipboardWriter::WritePickledData function in ui/base/clipboard/scoped_clipboard_writer.cc in Google Chrome before 33.0.1750.152 on OS X and Linux and before 33.0.1750.154 on Windows does not verify a certain format value, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the clipboard. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Google Chrome. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of the Microsoft Windows Clipboard. An attacker can leverage this vulnerability to execute code under the context of the broker process. Google Chrome is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass sandbox protection and execute arbitrary code with elevated privileges by leveraging access to a sandboxed process. Versions prior Chrome 33.0.1750.154 are vulnerable. A remote attacker could exploit this vulnerability to cause a denial of service or other effects. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201408-16 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Chromium: Multiple vulnerabilities Date: August 30, 2014 Bugs: #504328, #504890, #507212, #508788, #510288, #510904, #512944, #517304, #519788, #521276 ID: 201408-16 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in Chromium, the worst of which can allow remote attackers to execute arbitrary code. Background ========== Chromium is an open-source web browser project. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/chromium < 37.0.2062.94 >= 37.0.2062.94 Description =========== Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Workaround ========== There is no known workaround at this time. Resolution ========== All chromium users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=www-client/chromium-37.0.2062.94" References ========== [ 1 ] CVE-2014-1741 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1741 [ 2 ] CVE-2014-0538 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0538 [ 3 ] CVE-2014-1700 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1700 [ 4 ] CVE-2014-1701 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1701 [ 5 ] CVE-2014-1702 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1702 [ 6 ] CVE-2014-1703 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1703 [ 7 ] CVE-2014-1704 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1704 [ 8 ] CVE-2014-1705 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1705 [ 9 ] CVE-2014-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1713 [ 10 ] CVE-2014-1714 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1714 [ 11 ] CVE-2014-1715 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1715 [ 12 ] CVE-2014-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1716 [ 13 ] CVE-2014-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1717 [ 14 ] CVE-2014-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1718 [ 15 ] CVE-2014-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1719 [ 16 ] CVE-2014-1720 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1720 [ 17 ] CVE-2014-1721 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1721 [ 18 ] CVE-2014-1722 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1722 [ 19 ] CVE-2014-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1723 [ 20 ] CVE-2014-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1724 [ 21 ] CVE-2014-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1725 [ 22 ] CVE-2014-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1726 [ 23 ] CVE-2014-1727 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1727 [ 24 ] CVE-2014-1728 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1728 [ 25 ] CVE-2014-1729 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1729 [ 26 ] CVE-2014-1730 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1730 [ 27 ] CVE-2014-1731 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1731 [ 28 ] CVE-2014-1732 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1732 [ 29 ] CVE-2014-1733 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1733 [ 30 ] CVE-2014-1734 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1734 [ 31 ] CVE-2014-1735 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1735 [ 32 ] CVE-2014-1740 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1740 [ 33 ] CVE-2014-1742 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1742 [ 34 ] CVE-2014-1743 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1743 [ 35 ] CVE-2014-1744 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1744 [ 36 ] CVE-2014-1745 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1745 [ 37 ] CVE-2014-1746 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1746 [ 38 ] CVE-2014-1747 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1747 [ 39 ] CVE-2014-1748 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1748 [ 40 ] CVE-2014-1749 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1749 [ 41 ] CVE-2014-3154 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3154 [ 42 ] CVE-2014-3155 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3155 [ 43 ] CVE-2014-3156 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3156 [ 44 ] CVE-2014-3157 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3157 [ 45 ] CVE-2014-3160 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3160 [ 46 ] CVE-2014-3162 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3162 [ 47 ] CVE-2014-3165 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3165 [ 48 ] CVE-2014-3166 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3166 [ 49 ] CVE-2014-3167 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3167 [ 50 ] CVE-2014-3168 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3168 [ 51 ] CVE-2014-3169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3169 [ 52 ] CVE-2014-3170 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3170 [ 53 ] CVE-2014-3171 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3171 [ 54 ] CVE-2014-3172 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3172 [ 55 ] CVE-2014-3173 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3173 [ 56 ] CVE-2014-3174 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3174 [ 57 ] CVE-2014-3175 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3175 [ 58 ] CVE-2014-3176 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3176 [ 59 ] CVE-2014-3177 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3177 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201408-16.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5

Trust: 2.79

sources: NVD: CVE-2014-1714 // JVNDB: JVNDB-2014-001697 // ZDI: ZDI-14-087 // BID: 66252 // VULHUB: VHN-69653 // VULMON: CVE-2014-1714 // PACKETSTORM: 128057

AFFECTED PRODUCTS

vendor:	google	model:	chrome	scope:	lt	version:	33.0.1750.152	Trust: 1.0
vendor:	google	model:	chrome	scope:	lt	version:	33.0.1750.154	Trust: 1.0
vendor:	google	model:	chrome	scope:	lt	version:	33.0.1750.152 (mac and linux)	Trust: 0.8
vendor:	google	model:	chrome	scope:	lt	version:	33.0.1750.154 (windows)	Trust: 0.8
vendor:	google	model:	chrome	scope:	-	version:	-	Trust: 0.7
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.59	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.56	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.62	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.55	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.60	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.57	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.58	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.54	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.61	Trust: 0.6
vendor:	google	model:	chrome	scope:	eq	version:	33.0.1750.6	Trust: 0.6
vendor:	gentoo	model:	linux	scope:	-	version:	-	Trust: 0.3

sources: ZDI: ZDI-14-087 // BID: 66252 // JVNDB: JVNDB-2014-001697 // CNNVD: CNNVD-201403-321 // NVD: CVE-2014-1714

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2014-1714
value:	HIGH
Trust: 1.0
NVD:	CVE-2014-1714
value:	HIGH
Trust: 0.8
ZDI:	CVE-2014-1714
value:	MEDIUM
Trust: 0.7
CNNVD:	CNNVD-201403-321
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-69653
value:	HIGH
Trust: 0.1
VULMON:	CVE-2014-1714
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2014-1714
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
ZDI:	CVE-2014-1714
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.7
VULHUB:	VHN-69653
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: ZDI: ZDI-14-087 // VULHUB: VHN-69653 // VULMON: CVE-2014-1714 // JVNDB: JVNDB-2014-001697 // CNNVD: CNNVD-201403-321 // NVD: CVE-2014-1714

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-69653 // JVNDB: JVNDB-2014-001697 // NVD: CVE-2014-1714

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 128057 // CNNVD: CNNVD-201403-321

TYPE

Input Validation Error

Trust: 0.9

sources: BID: 66252 // CNNVD: CNNVD-201403-321

CONFIGURATIONS

sources: JVNDB: JVNDB-2014-001697

PATCH

title:	Revision 256974	url:	https://src.chromium.org/viewvc/chrome?revision=256974&view=revision	Trust: 0.8
title:	Stable Channel Update	url:	http://googlechromereleases.blogspot.jp/2014/03/stable-channel-update_14.html	Trust: 0.8
title:	Google Chrome	url:	http://www.google.co.jp/chrome/intl/ja/landing_ff_yt.html?hl=ja&hl=ja	Trust: 0.8
title:	Google has issued an update to correct this vulnerability.	url:	http://googlechromereleases.blogspot.com/2014/03/stable-channel-update_14.html	Trust: 0.7
title:	googlechrome-33.0.1750.152	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=48698	Trust: 0.6
title:	ChromeSetup-33.0.1750.154	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=48700	Trust: 0.6
title:	google-chrome-33.0.1750.152-stable_current_amd64	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=48699	Trust: 0.6
title:	-	url:	https://github.com/Live-Hack-CVE/CVE-2014-1714	Trust: 0.1

sources: ZDI: ZDI-14-087 // VULMON: CVE-2014-1714 // JVNDB: JVNDB-2014-001697 // CNNVD: CNNVD-201403-321

EXTERNAL IDS

db:	NVD	id:	CVE-2014-1714	Trust: 3.7
db:	JVNDB	id:	JVNDB-2014-001697	Trust: 0.8
db:	ZDI_CAN	id:	ZDI-CAN-2230	Trust: 0.7
db:	ZDI	id:	ZDI-14-087	Trust: 0.7
db:	CNNVD	id:	CNNVD-201403-321	Trust: 0.7
db:	BID	id:	66252	Trust: 0.4
db:	VULHUB	id:	VHN-69653	Trust: 0.1
db:	VULMON	id:	CVE-2014-1714	Trust: 0.1
db:	PACKETSTORM	id:	128057	Trust: 0.1

sources: ZDI: ZDI-14-087 // VULHUB: VHN-69653 // VULMON: CVE-2014-1714 // BID: 66252 // JVNDB: JVNDB-2014-001697 // PACKETSTORM: 128057 // CNNVD: CNNVD-201403-321 // NVD: CVE-2014-1714

REFERENCES

url:	http://googlechromereleases.blogspot.com/2014/03/stable-channel-update_14.html	Trust: 2.5
url:	http://security.gentoo.org/glsa/glsa-201408-16.xml	Trust: 1.9
url:	http://archives.neohapsis.com/archives/bugtraq/2014-03/0143.html	Trust: 1.8
url:	https://code.google.com/p/chromium/issues/detail?id=352395	Trust: 1.8
url:	http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00008.html	Trust: 1.8
url:	https://src.chromium.org/viewvc/chrome?revision=256974&view=revision	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-1714	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-1714	Trust: 0.8
url:	http://www.google.com/chrome	Trust: 0.3
url:	https://src.chromium.org/viewvc/chrome?revision=256974&view=revision	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/20.html	Trust: 0.1
url:	https://github.com/live-hack-cve/cve-2014-1714	Trust: 0.1
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=33784	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1720	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1720	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1728	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1700	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3157	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3167	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1716	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0538	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1740	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3173	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1705	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1702	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3165	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1717	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3168	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3171	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1730	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3175	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1749	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3156	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1727	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1731	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1726	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1724	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1741	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1729	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1716	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1723	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3166	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1722	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1714	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1713	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1715	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1715	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1725	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3169	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1701	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1745	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1722	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1748	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1702	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1730	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1725	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3177	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1717	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1742	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3174	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1704	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-0538	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1732	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1727	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3170	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1713	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1733	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1743	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1721	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1718	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3155	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1735	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1728	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1747	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1701	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1719	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1704	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1721	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1746	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1726	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3172	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3176	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1732	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1734	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1700	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1723	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1718	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3160	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1714	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1731	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1719	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1705	Trust: 0.1
url:	http://security.gentoo.org/	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3154	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3162	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1733	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1703	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1724	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1729	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1744	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1703	Trust: 0.1

CREDITS

VUPEN

Trust: 1.0

sources: ZDI: ZDI-14-087 // BID: 66252

SOURCES

db:	ZDI	id:	ZDI-14-087
db:	VULHUB	id:	VHN-69653
db:	VULMON	id:	CVE-2014-1714
db:	BID	id:	66252
db:	JVNDB	id:	JVNDB-2014-001697
db:	PACKETSTORM	id:	128057
db:	CNNVD	id:	CNNVD-201403-321
db:	NVD	id:	CVE-2014-1714

LAST UPDATE DATE

2025-04-13T21:28:35.910000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-14-087	date:	2014-04-11T00:00:00
db:	VULHUB	id:	VHN-69653	date:	2017-01-07T00:00:00
db:	VULMON	id:	CVE-2014-1714	date:	2022-11-10T00:00:00
db:	BID	id:	66252	date:	2014-09-02T00:13:00
db:	JVNDB	id:	JVNDB-2014-001697	date:	2014-03-18T00:00:00
db:	CNNVD	id:	CNNVD-201403-321	date:	2022-11-14T00:00:00
db:	NVD	id:	CVE-2014-1714	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-14-087	date:	2014-04-11T00:00:00
db:	VULHUB	id:	VHN-69653	date:	2014-03-16T00:00:00
db:	VULMON	id:	CVE-2014-1714	date:	2014-03-16T00:00:00
db:	BID	id:	66252	date:	2014-03-14T00:00:00
db:	JVNDB	id:	JVNDB-2014-001697	date:	2014-03-18T00:00:00
db:	PACKETSTORM	id:	128057	date:	2014-09-02T06:19:45
db:	CNNVD	id:	CNNVD-201403-321	date:	2014-03-20T00:00:00
db:	NVD	id:	CVE-2014-1714	date:	2014-03-16T14:06:45.647