Lucene search
MozillaCVELIST:CVE-2014-1582HistoryOct 15, 2014 - 10:00 a.m.
CVE-2014-1582
2014-10-1510:00:00
mozilla
raw.githubusercontent.com
2
The Public Key Pinning (PKP) implementation in Mozilla Firefox before 33.0 does not properly consider the connection-coalescing behavior of SPDY and HTTP/2 in the case of a shared IP address, which allows man-in-the-middle attackers to bypass an intended pinning configuration and spoof a web site by providing a valid certificate from an arbitrary recognized Certification Authority.
Related
prion
prion
Design/Logic Flaw
2014-10-15 10:55:00
cve
cve
CVE-2014-1582
2014-10-15 10:55:06
ubuntucve
ubuntucve
CVE-2014-1582
2014-10-14 00:00:00
mozilla
mozilla
Key pinning bypasses — Mozilla
2014-10-14 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-80) - Linux
2021-11-11 00:00:00
Mozilla Firefox Multiple Vulnerabilities-01 (Oct 2014) - Mac OS X
2014-10-20 00:00:00
Mozilla Firefox Multiple Vulnerabilities-01 (Oct 2014) - Windows
2014-10-17 00:00:00
nessus
nessus
Mozilla Thunderbird < 31.2 Multiple Vulnerabilities
2014-10-17 00:00:00
FreeBSD : mozilla -- multiple vulnerabilities (9c1495ac-8d8c-4789-a0f3-8ca6b476619c)
2014-10-16 00:00:00
Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2372-1)
2014-10-15 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-10-14 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2014-10-14 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-10-15 00:00:00
mageia
mageia
Updated iceape package fixes security vulnerabilities
2014-10-23 17:27:57
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00