Lucene search
Mozilla FoundationMFSA2016-43HistoryApr 26, 2016 - 12:00 a.m.
Disclosure of user actions through JavaScript with motion and orientation sensors — Mozilla
2016-04-2600:00:00
Mozilla Foundation
www.mozilla.org
21
0.004 Low
EPSS
Percentile
72.9%
Security researcher Maryam Mehrnezhad of Newcastle University, UK reported an issue discovered by their research team, which also includes Ehsan Toreini, Siamak F. Shahandashti, and Feng Hao. They found vulnerabilities in Firefox for Android using orientation data and motion sensors on a mobile device’s browser accessible through JavaScript. This allows an attacker to infer touch actions on the device through these sensors when orientation events are triggered in the browser, compromising user privacy and including potentially revealing entered PIN code data along with other user activities.
Related
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2016-43) - Deprecated
2021-11-08 00:00:00
cve
cve
CVE-2016-2813
2016-04-30 17:59:00
debiancve
debiancve
CVE-2016-2813
2016-04-30 17:59:00
prion
prion
Information disclosure
2016-04-30 17:59:00
cvelist
cvelist
CVE-2016-2813
2016-04-30 17:00:00
ubuntucve
ubuntucve
CVE-2016-2813
2016-04-30 00:00:00
kaspersky
kaspersky
KLA10795 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2016-04-26 00:00:00
nessus
nessus
openSUSE Security Update : Firefox 46.0 (openSUSE-2016-566) (SWEET32)
2016-05-12 00:00:00
gentoo
gentoo
Mozilla Firefox, Thunderbird: Multiple vulnerabilities
2017-01-03 00:00:00