{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2775?format=json","vulnerability_id":"VCID-1tn2-y41e-pbby","summary":"Security researcher Abhishek Arya (Inferno) of the Google\nChrome Security Team discovered a number of use-after-free and out of bounds read \nissues using the Address Sanitizer tool. These issues are potentially exploitable, \nallowing for remote code execution. \nIn general this flaw cannot be exploited through email in the\nThunderbird and Seamonky products because scripting is disabled, but is \npotentially a risk in browser or browser-like contexts.","aliases":[{"alias":"CVE-2014-1536"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1159?format=json","purl":"pkg:mozilla/Firefox@30.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@30.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1164?format=json","purl":"pkg:mozilla/Firefox%20ESR@24.6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@24.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1166?format=json","purl":"pkg:mozilla/Seamonkey@2.26.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Seamonkey@2.26.1"},{"url":"http://public2.vulnerablecode.io/api/packages/1165?format=json","purl":"pkg:mozilla/Thunderbird@24.6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@24.6.0"}],"affected_packages":[],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1536","reference_id":"CVE-2014-1536","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1536"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2014-49","reference_id":"mfsa2014-49","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2014-49"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1tn2-y41e-pbby"}