CVE-2014-1478

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 27.0 SeaMonkey versions prior to 2.24

Description The issue is related to errors in the implementation of the MPostWriteBarrier class, allowing remote attackers to cause a denial of service or possibly execute arbitrary code. This can be achieved through vectors related to the MPostWriteBarrier class in js/src/jit/MIR.h and stack alignment in js/src/jit/AsmJS.cpp in OdinMonkey. The exploitation of this issue can result in memory corruption and application crash.

Recommendations For Mozilla Firefox versions prior to 27.0, update to version 27.0 or later to resolve the issue. For SeaMonkey versions prior to 2.24, update to version 2.24 or later to resolve the issue. As a temporary workaround, consider disabling the MPostWriteBarrier class in js/src/jit/MIR.h until a patch is available. Restrict access to the OdinMonkey module to minimize the risk of exploitation.