Lucene search

MozillaCVELIST:CVE-2014-8643

HistoryJan 14, 2015 - 11:00 a.m.

CVE-2014-8643

2015-01-1411:00:00

mozilla

www.cve.org

AI Score

6.2

Confidence

Low

EPSS

0.009

Percentile

83.0%

JSON

Mozilla Firefox before 35.0 on Windows allows remote attackers to bypass the Gecko Media Plugin (GMP) sandbox protection mechanism by leveraging access to the GMP process, as demonstrated by the OpenH264 plugin’s process.

References

lists.opensuse.org/opensuse-security-announce/2015-01/msg00014.html

lists.opensuse.org/opensuse-security-announce/2015-02/msg00002.html

secunia.com/advisories/62253

secunia.com/advisories/62446

www.mozilla.org/security/announce/2014/mfsa2015-07.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.securityfocus.com/bid/72043

www.securitytracker.com/id/1031533

bugzilla.mozilla.org/show_bug.cgi?id=1117140

exchange.xforce.ibmcloud.com/vulnerabilities/99962