Lucene search
MozillaCVELIST:CVE-2014-1552HistoryJul 23, 2014 - 10:00 a.m.
CVE-2014-1552
2014-07-2310:00:00
mozilla
www.cve.org
Mozilla Firefox before 31.0 and Thunderbird before 31.0 do not properly implement the sandbox attribute of the IFRAME element, which allows remote attackers to bypass intended restrictions on same-origin content via a crafted web site in conjunction with a redirect.
References
secunia.com/advisories/59760
secunia.com/advisories/60628
www.mozilla.org/security/announce/2014/mfsa2014-66.html
www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
www.securitytracker.com/id/1030619
www.securitytracker.com/id/1030620
bugzilla.mozilla.org/show_bug.cgi?id=985135
security.gentoo.org/glsa/201504-01
Related
ubuntucve
ubuntucve
CVE-2014-1552
2014-07-22 00:00:00
prion
prion
Cross site request forgery (csrf)
2014-07-23 11:12:00
nvd
nvd
CVE-2014-1552
2014-07-23 11:12:43
cve
cve
CVE-2014-1552
2014-07-23 11:12:43
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-66) - Linux
2021-11-11 00:00:00
Ubuntu: Security Advisory (USN-2296-1)
2014-07-28 00:00:00
Mozilla Thunderbird Multiple Vulnerabilities-01 (Aug 2014) - Mac OS X
2014-08-07 00:00:00
mozilla
mozilla
IFRAME sandbox same-origin access through redirect — Mozilla
2014-07-22 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-07-22 00:00:00
Firefox vulnerabilities
2014-07-22 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Thunderbird vulnerabilities (USN-2296-1)
2014-07-23 00:00:00
Mozilla Thunderbird < 31.0 Multiple Vulnerabilities (Mac OS X)
2014-07-24 00:00:00
openSUSE Security Update : MozillaFirefox (openSUSE-2014-476)
2014-08-01 00:00:00
suse
suse
MozillaFirefox: Update to Mozilla Firefox 31 (important)
2014-07-30 20:43:23
Security update for Mozilla Firefox (important)
2014-08-02 01:04:22
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-07-28 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-07-22 00:00:00
mageia
mageia
Updated iceape package fixes security vulnerabilities
2014-10-23 17:27:57
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00