CVE-2014-1483
N/A
N/A
Summary
Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to bypass the Same Origin Policy and obtain sensitive information by using an IFRAME element in conjunction with certain timing measurements involving the document.caretPositionFromPoint and document.elementFromPoint functions.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00004.html
- http://www.securitytracker.com/id/1029717
- https://8pecxstudios.com/?page_id=44080
- http://secunia.com/advisories/56787
- http://www.securitytracker.com/id/1029720
- https://bugzilla.mozilla.org/show_bug.cgi?id=950427
- http://www.securityfocus.com/bid/65316
- http://www.ubuntu.com/usn/USN-2102-2
- https://security.gentoo.org/glsa/201504-01
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90893
- http://secunia.com/advisories/56888
- http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.html
- http://www.mozilla.org/security/announce/2014/mfsa2014-05.html
- http://osvdb.org/102869
- http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00010.html
- http://www.ubuntu.com/usn/USN-2102-1
- http://secunia.com/advisories/56767
- http://secunia.com/advisories/56706
References
- http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00004.html
- http://www.securitytracker.com/id/1029717
- https://8pecxstudios.com/?page_id=44080
- http://secunia.com/advisories/56787
- http://www.securitytracker.com/id/1029720
- https://bugzilla.mozilla.org/show_bug.cgi?id=950427
- http://www.securityfocus.com/bid/65316
- http://www.ubuntu.com/usn/USN-2102-2
- https://security.gentoo.org/glsa/201504-01
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90893
- http://secunia.com/advisories/56888
- http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.html
- http://www.mozilla.org/security/announce/2014/mfsa2014-05.html
- http://osvdb.org/102869
- http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00010.html
- http://www.ubuntu.com/usn/USN-2102-1
- http://secunia.com/advisories/56767
- http://secunia.com/advisories/56706
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.