CVE-2014-1539 — Vulnetix

CVE-2014-1539 PUBLISHED

Reported by mozilla · Published June 11, 2014

Mozilla Firefox before 30.0 and Thunderbird through 24.6 on OS X do not ensure visibility of the cursor after interaction with a Flash object and a DIV element, which makes it easier for remote attackers to conduct clickjacking attacks via JavaScript code that produces a fake cursor image.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	*, n/a

Timeline

Jun 11, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Dec 17, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 1, 2023 EPSS Score
May 24, 2023 EPSS Score
Jul 15, 2023 EPSS Score

References

openSUSE-SU-2014:0819 vendor-advisoryx_refsource_SUSE
59387 third-party-advisoryx_refsource_SECUNIA
1030388 vdb-entryx_refsource_SECTRACK
openSUSE-SU-2014:0855 vendor-advisoryx_refsource_SUSE
x_refsource_CONFIRM
GLSA-201504-01 vendor-advisoryx_refsource_GENTOO
x_refsource_CONFIRM
67967 vdb-entryx_refsource_BID
59171 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
59486 third-party-advisoryx_refsource_SECUNIA

Open in Interactive Console →