CVE-2016-1949

creationtimestamp| type| source ---|---|--- 2025-03-19 13:54:17+00:00| seen| https://gist.github.com/makeforfun/85ab01bc29a9bdc9bd019a3e320a3f94...

openSUSE Security Update : Mozilla Firefox (openSUSE-2016-259)

This update for MozillaFirefox fixes the following issues : - update to Firefox 44.0.2 - MFSA 2016-13/CVE-2016-1949 bmo1245724, boo966438 Same-origin-policy violation using Service Workers with plugins - Fix issue which could lead to the removal of stored passwords under certain circumstances...

CVE-2016-1949

CVE-2016-1949 affects Mozilla Firefox prior to 44.0.2 where Service Workers improperly interact with plugins, allowing remote attackers to bypass the Same-Origin Policy by a crafted site that triggers spoofed responses to NPAPI requests (e.g., crossdomain.xml). This is a network‑accessible vulner...

Ubuntu: Security Advisory (USN-2893-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-2893-1: Firefox vulnerability

Jason Pang discovered that service workers intercept responses to plugin network requests made through the browser. An attacker could potentially exploit this to bypass same origin restrictions using the Flash plugin. CVE-2016-1949...