CVE-2014-1507

2014-03-19T06:55:06
ID CVE-2014-1507
Type cve
Reporter NVD
Modified 2016-11-15T12:53:11

Description

Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS before 1.2.2 allows attackers to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageFile object.