Lucene search
K

5 matches found

NVD
NVD
added 2014/03/29 8:55 p.m.20 views

CVE-2014-1516

The saltProfileName function in base/GeckoProfileDirectories.java in Mozilla Firefox through 28.0.1 on Android relies on Android's weak approach to seeding the Math.random function, which makes it easier for attackers to bypass a profile-randomization protection mechanism via a crafted applicatio...

5CVSS6.3AI score0.01172EPSS
Exploits1References3
CVE
CVE
added 2014/03/29 8:0 p.m.54 views

CVE-2014-1516

CVE-2014-1516 affects Mozilla Firefox for Android (up to version 28.0.1) where the saltProfileName in GeckoProfileDirectories.java relies on Android’s weak Math.random seeding, enabling a crafted application to bypass the profile-randomization protection. The vulnerability arises from weak random...

5CVSS6.4AI score0.01172EPSS
Exploits1References3Affected Software1
securityvulns
securityvulns
added 2014/03/27 12:0 a.m.105 views

Firefox for Android Profile Directory Derandomization and Data Exfiltration (CVE-2014-1484, CVE-2014-1506, CVE-2014-1515, CVE-2014-1516)

Hi, We have recently discovered a series of vulnerabilities in Firefox for Android that allows a malicious application to successfully derandomize the Firefox profile directory name in a practical amount of time and then leak sensitive data such as cookies and cached information which reside in...

6.4CVSS0.02344EPSS
Exploits3
The Hacker News
The Hacker News
added 2014/03/26 10:0 p.m.45 views

Multiple Vulnerabilities in Firefox for Android Leak Sensitive Information

The Android operating system has hardened its security with application Sandboxing features to ensure that no application can access sensitive information held by another without proper privileges. Android applications communicate with each other through Intents and these intents can be abused by...

6.4CVSS8.7AI score0.02344EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2014/03/26 12:0 a.m.22 views

Mozilla Firefox for Android < 28.0.1 Multiple Vulnerabilities

Binary data 8175.prm...

5CVSS6.9AI score0.01172EPSS
Exploits2References4
Rows per page
Query Builder