CVE-2014-1589

Опубликовано: 11 дек. 2014

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

Описание

Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide stylesheets with an incorrect primary namespace, which allows remote attackers to bypass intended access restrictions via an XBL binding.

Релиз	Статус	Примечание
devel	released	34.0+build2-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [34.0+build2-0ubuntu0.14.04.1]]
lucid	ignored	end of life
precise	released	34.0+build2-0ubuntu0.12.04.1
trusty	released	34.0+build2-0ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [34.0+build2-0ubuntu0.14.04.1]
upstream	released	34.0
utopic	released	34.0+build2-0ubuntu0.14.10.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 53%

0.00305

Низкий

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2014-1589

redhat

около 11 лет назад

Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide stylesheets with an incorrect primary namespace, which allows remote attackers to bypass intended access restrictions via an XBL binding.

CVE-2014-1589

nvd

около 11 лет назад

Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide stylesheets with an incorrect primary namespace, which allows remote attackers to bypass intended access restrictions via an XBL binding.

CVE-2014-1589

debian

около 11 лет назад

Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide styleshe ...

GHSA-grpw-qvqh-xgxx

github

больше 3 лет назад

Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide stylesheets with an incorrect primary namespace, which allows remote attackers to bypass intended access restrictions via an XBL binding.

EPSS

Процентиль: 53%

0.00305

Низкий

6.8 Medium

CVSS2

CVE-2014-1589

Описание

Пакет firefox

Ссылки на источники

Связанные уязвимости