Lucene search

MozillaCVE-2014-1499

HistoryMar 19, 2014 - 10:55 a.m.

CVE-2014-1499

2014-03-1910:55:06

mozilla

web.nvd.nist.gov

cve-2014-1499

mozilla firefox

seamonkey

remote attackers

spoofing

webrtc

camera

microphone

permission prompt

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

High

EPSS

0.006

Percentile

78.4%

JSON

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certain time during generation of this prompt.

Affected configurations

Nvd

Node

suselinux_enterprise_desktopMatch11sp3

suselinux_enterprise_serverMatch11sp3

suselinux_enterprise_serverMatch11sp3vmware

suselinux_enterprise_software_development_kitMatch11sp3

Node

mozillaseamonkeyRange<2.25

Node

oraclesolarisMatch11.3

Node

mozillafirefoxRange<28.0

Node

opensuseopensuseMatch13.1

opensuse_projectopensuseMatch11.4

opensuse_projectopensuseMatch12.3

VendorProductVersionCPE
suselinux_enterprise_desktop11cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
suselinux_enterprise_server11cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*
suselinux_enterprise_server11cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*
suselinux_enterprise_software_development_kit11cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
oraclesolaris11.3cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
opensuseopensuse13.1cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
opensuse_projectopensuse11.4cpe:2.3:o:opensuse_project:opensuse:11.4:*:*:*:*:*:*:*
opensuse_projectopensuse12.3cpe:2.3:o:opensuse_project:opensuse:12.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
suse	linux_enterprise_desktop	11	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3::::::
suse	linux_enterprise_server	11	cpe:2.3:o:suse:linux_enterprise_server:11:sp3::::::
suse	linux_enterprise_server	11	cpe:2.3:o:suse:linux_enterprise_server:11:sp3::::vmware::*
suse	linux_enterprise_software_development_kit	11	cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3::::::
mozilla	seamonkey	*	cpe:2.3:a:mozilla:seamonkey::::::::
oracle	solaris	11.3	cpe:2.3:o:oracle:solaris:11.3:::::::*
mozilla	firefox	*	cpe:2.3:a:mozilla:firefox::::::::
opensuse	opensuse	13.1	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
opensuse_project	opensuse	11.4	cpe:2.3:o:opensuse_project:opensuse:11.4:::::::*
opensuse_project	opensuse	12.3	cpe:2.3:o:opensuse_project:opensuse:12.3:::::::*