Lucene search
Ubuntu.comUB:CVE-2014-1504HistoryMar 18, 2014 - 12:00 a.m.
CVE-2014-1504
2014-03-1800:00:00
ubuntu.com
ubuntu.com
9
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
73.4%
The session-restore feature in Mozilla Firefox before 28.0 and SeaMonkey
before 2.25 does not consider the Content Security Policy of a data: URL,
which makes it easier for remote attackers to conduct cross-site scripting
(XSS) attacks via a crafted document that is accessed after a browser
restart.
Related
cvelist
cvelist
CVE-2014-1504
2014-03-19 10:00:00
mozilla
mozilla
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-23) - Linux
2021-11-11 00:00:00
SuSE Update for MozillaFirefox openSUSE-SU-2014:0448-1 (MozillaFirefox)
2014-04-03 00:00:00
Ubuntu Update for firefox USN-2150-1
2014-03-20 00:00:00
prion
prion
Cross site scripting
2014-03-19 10:55:00
cve
cve
CVE-2014-1504
2014-03-19 10:55:00
suse
suse
MozillaThunderbird,seamonkey (important)
2014-04-30 09:04:15
MozillaFirefox: Update to version 28.0 (important)
2014-03-26 17:04:14
Security update for MozillaFirefox (important)
2014-03-21 23:04:18
nessus
nessus
openSUSE Security Update : MozillaFirefox (openSUSE-SU-2014:0448-1)
2014-06-13 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.10 : firefox vulnerabilities (USN-2150-1)
2014-03-19 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2014-03-18 00:00:00
mageia
mageia
Updated iceape packages fix multiple vulnerabilities
2014-03-31 23:47:52
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-03-19 00:00:00
securityvulns
securityvulns
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
73.4%
Related for UB:CVE-2014-1504