Lucene search
Mozilla FoundationMFSA2013-84HistorySep 17, 2013 - 12:00 a.m.
Same-origin bypass through symbolic links — Mozilla
2013-09-1700:00:00
Mozilla Foundation
www.mozilla.org
15
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
64.9%
Security researcher Takeshi Terada reported a mechanism to violate same-origin policy for local files using file:// through the use of symbolic links. This problem only affects web pages loaded from the local filesystem. This could allow for cross-site scripting (XSS) and access to locally stored Firefox files containing passwords and cookies.
Affected configurations
Node
mozillafirefoxRange<24
Related
cvelist
cvelist
CVE-2013-1727
2013-09-18 10:00:00
securityvulns
securityvulns
Firefox for Android - Same-origin bypass through symbolic links
2013-10-01 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-10-01 00:00:00
cve
cve
CVE-2013-1727
2013-09-18 10:08:24
zdt
zdt
Firefox For Android Same-Origin Bypass
2013-10-02 00:00:00
prion
prion
Cross site scripting
2013-09-18 10:08:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-84) - Linux
2021-11-11 00:00:00
packetstorm
packetstorm
Firefox For Android Same-Origin Bypass
2013-09-30 00:00:00
nvd
nvd
CVE-2013-1727
2013-09-18 10:08:24
nessus
nessus
Mozilla Firefox < 24.0 Multiple Vulnerabilities
2013-09-18 00:00:00
Fedora 19 : firefox-24.0-1.fc19 / xulrunner-24.0-2.fc19 (2013-16992)
2013-09-21 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-08-17 00:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
64.9%
Related for MFSA2013-84