CVE-2013-5614

2013-12-11T15:55:00
ID CVE-2013-5614
Type cve
Reporter cve@mitre.org
Modified 2016-12-22T02:59:00

Description

Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly consider the sandbox attribute of an IFRAME element during processing of a contained OBJECT element, which allows remote attackers to bypass intended sandbox restrictions via a crafted web site.