CVE-2014-1566 in Firefox
Resumen (Inglés)
Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from the Firefox profile directory via a crafted application. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1515.
Be aware that VulDB is the high quality source for vulnerability data.
Reservar
2014-01-16
Divulgación
2014-09-03
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 67446 | Mozilla Firefox/Thunderbird File Protocol escalada de privilegios | 264 | No probado | Arreglo oficial | CVE-2014-1566 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV