Lucene search

Mozilla FoundationMFSA2014-91

HistoryDec 02, 2014 - 12:00 a.m.

Privileged access to security wrapped protected objects — Mozilla

2014-12-0200:00:00

Mozilla Foundation

www.mozilla.org

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

EPSS

0.002

Percentile

64.9%

JSON

Mozilla developer Bobby Holley discovered two issues involving security wrappers.

Affected configurations

Vulners

Node

mozillafirefoxRange<34

mozillaseamonkeyRange<2.31

VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox	*	cpe:2.3:a:mozilla:firefox::::::::
mozilla	seamonkey	*	cpe:2.3:a:mozilla:seamonkey::::::::

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8631

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8632

bugzilla.mozilla.org/show_bug.cgi?id=1050340

bugzilla.mozilla.org/show_bug.cgi?id=821573

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

EPSS

0.002

Percentile

64.9%

JSON

Related for MFSA2014-91