Описание
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers to trick users into permitting camera or microphone access via a crafted web site that uses IFRAME elements.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 23.0~b2+build1-0ubuntu1 |
| lucid | ignored | end of life |
| precise | released | 22.0+build1-0ubuntu0.12.04.1 |
| quantal | released | 22.0+build1-0ubuntu0.12.10.1 |
| raring | released | 22.0+build1-0ubuntu0.13.04.1 |
| upstream | released | 22.0 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers to trick users into permitting camera or microphone access via a crafted web site that uses IFRAME elements.
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers to trick users into permitting camera or microphone access via a crafted web site that uses IFRAME elements.
The getUserMedia permission implementation in Mozilla Firefox before 2 ...
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers to trick users into permitting camera or microphone access via a crafted web site that uses IFRAME elements.
EPSS
4.3 Medium
CVSS2