CVE-2014-1499

Currently unrated

Key Information:

Vendor: Suse
Status: Linux Enterprise Desktop; Linux Enterprise Server; Linux Enterprise Software Development Kit
Vendor: CVE Published:; 19 March 2014

Summary

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certain time during generation of this prompt.

References

http://www.mozilla.org/security/announce/2014/mfsa2014-19...

x_refsource_CONFIRM

https://bugzilla.mozilla.org/show_bug.cgi?id=961512

x_refsource_CONFIRM

https://security.gentoo.org/glsa/201504-01

vendor-advisoryx_refsource_GENTOO

Timeline

Vulnerability published
Mar 19, 2014
Vulnerability Reserved
Jan 16, 2014