Lucene search
Mozilla FoundationMFSA2015-68HistoryJul 02, 2015 - 12:00 a.m.
OS X crash reports may contain entered key press information — Mozilla
2015-07-0200:00:00
Mozilla Foundation
www.mozilla.org
24
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.003
Percentile
70.0%
Mozilla developer David Parks discovered while reviewing Firefox crash reports that personal data can sometimes be contained in reports from OS X systems. This is because these OS X crash reports will contain the native key that triggered the crash and this can sometimes contain key press information that was being entered when the crash occurred.
Affected configurations
Node
mozillafirefoxRange<39
ORmozillaseamonkeyRange<2.38
Related
ubuntucve
ubuntucve
CVE-2015-2742
2015-07-06 00:00:00
prion
prion
Information disclosure
2015-07-06 02:01:00
cvelist
cvelist
CVE-2015-2742
2015-07-06 01:00:00
nvd
nvd
CVE-2015-2742
2015-07-06 02:01:10
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-68) - Linux
2021-11-11 00:00:00
Gentoo Security Advisory GLSA 201512-10
2015-12-31 00:00:00
cve
cve
CVE-2015-2742
2015-07-06 02:01:10
kaspersky
kaspersky
KLA10622 Multiple vulnerabilities in Mozilla products
2015-07-02 00:00:00
nessus
nessus
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2015-07-13 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-07-02 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-12-30 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.003
Percentile
70.0%
Related for MFSA2015-68