VDB
CVE-2014-1479
CVE-2014-1479
PUBLISHED
Reported by mozilla · Published February 6, 2014
The System Only Wrapper (SOW) implementation in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent certain cloning operations, which allows remote attackers to bypass intended restrictions on XUL content via vectors involving XBL content scopes.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Exploit Intelligence
Timeline
- Feb 6, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- USN-2119-1 vendor-advisoryx_refsource_UBUNTU
- x_refsource_CONFIRM
- 1029721 vdb-entryx_refsource_SECTRACK
- openSUSE-SU-2014:0212 vendor-advisoryx_refsource_SUSE
- 1029717 vdb-entryx_refsource_SECTRACK
- x_refsource_CONFIRM
- RHSA-2014:0132 vendor-advisoryx_refsource_REDHAT
- 56922 third-party-advisoryx_refsource_SECUNIA
- 56787 third-party-advisoryx_refsource_SECUNIA
- 1029720 vdb-entryx_refsource_SECTRACK
- 56858 third-party-advisoryx_refsource_SECUNIA
- firefox-cve20141479-sec-bypass(90898) vdb-entryx_refsource_XF
- 102866 vdb-entryx_refsource_OSVDB
- DSA-2858 vendor-advisoryx_refsource_DEBIAN
- 56763 third-party-advisoryx_refsource_SECUNIA
- USN-2102-2 vendor-advisoryx_refsource_UBUNTU
- RHSA-2014:0133 vendor-advisoryx_refsource_REDHAT
- GLSA-201504-01 vendor-advisoryx_refsource_GENTOO
- x_refsource_CONFIRM
- 65320 vdb-entryx_refsource_BID
…and 13 more