Lucene search
Mozilla FoundationMFSA2014-02HistoryFeb 04, 2014 - 12:00 a.m.
Clone protected content with XBL scopes — Mozilla
2014-02-0400:00:00
Mozilla Foundation
www.mozilla.org
17
0.003 Low
EPSS
Percentile
69.2%
Security researcher Cody Crews reported a method to bypass System Only Wrappers (SOW) by using XML Binding Language (XBL) content scopes to clone protected XUL elements. This could be used to clone anonymous nodes, making trusted XUL content web accessible.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox | lt | 27 | |
| firefox esr | lt | 24.3 | |
| seamonkey | lt | 2.24 | |
| thunderbird | lt | 24.3 |
Related
cvelist
cvelist
CVE-2014-1479
2014-02-06 02:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-02) - Linux
2021-11-11 00:00:00
CentOS Update for firefox CESA-2014:0132 centos5
2014-02-11 00:00:00
Mageia: Security Advisory (MGASA-2014-0036)
2022-01-28 00:00:00
prion
prion
Design/Logic Flaw
2014-02-06 05:44:00
cve
cve
CVE-2014-1479
2014-02-06 05:44:00
ubuntucve
ubuntucve
CVE-2014-1479
2014-02-04 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:00:59
Arbitrary Code Execution
2019-05-02 05:00:59
Same-Origin Policy Bypass
2019-05-02 05:00:59
centos
centos
firefox security update
2014-02-05 09:15:53
thunderbird security update
2014-02-05 09:18:22
redhat
redhat
(RHSA-2014:0133) Important: thunderbird security update
2014-02-04 00:00:00
(RHSA-2014:0132) Critical: firefox security update
2014-02-04 00:00:00
nessus
nessus
Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20140204)
2014-02-05 00:00:00
RHEL 5 / 6 : firefox (RHSA-2014:0132)
2014-02-05 00:00:00
CentOS 5 / 6 : firefox (CESA-2014:0132)
2014-02-06 00:00:00
oraclelinux
oraclelinux
firefox security update
2014-02-04 00:00:00
thunderbird security update
2014-02-04 00:00:00
mageia
mageia
Updated Firefox & Thunderbird packages fix multiple security vulnerabilities
2014-02-07 00:02:09
Updated seamonkey packages fix multiple vulnerabilities
2014-02-11 00:18:15
debian
debian
[SECURITY] [DSA 2858-1] iceweasel security update
2014-02-10 15:42:08
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-02-19 00:00:00
Firefox regression
2014-02-19 00:00:00
Firefox vulnerabilities
2014-02-10 00:00:00
suse
suse
Mozilla updates February 2014 (important)
2014-02-08 13:04:12
Security update for MozillaFirefox (important)
2014-02-18 13:25:23
Security update for Mozilla Firefox (important)
2014-02-19 21:04:13
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-02-04 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-02-10 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00