TROYANOSYVIRUS
Retour aux CVEs

CVE-2014-1586

N/A

Description

content/base/src/nsDocument.cpp in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 does not consider whether WebRTC video sharing is occurring, which allows remote attackers to obtain sensitive information from the local camera in certain IFRAME situations by maintaining a session after the user temporarily navigates away.

Details CVE

Score CVSS v3.1N/A
Publie10/15/2014
Derniere modification4/12/2025
Sourcenvd
Observations honeypot0

Produits affectes

mozilla:firefoxmozilla:thunderbird

References

http://lists.fedoraproject.org/pipermail/package-announce/2014-November/141796.html(security@mozilla.org)
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141085.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00000.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00001.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00002.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00003.html(security@mozilla.org)
http://secunia.com/advisories/61387(security@mozilla.org)
http://secunia.com/advisories/62021(security@mozilla.org)
http://secunia.com/advisories/62022(security@mozilla.org)
http://secunia.com/advisories/62023(security@mozilla.org)
http://www.debian.org/security/2014/dsa-3050(security@mozilla.org)
http://www.debian.org/security/2014/dsa-3061(security@mozilla.org)
http://www.mozilla.org/security/announce/2014/mfsa2014-81.html(security@mozilla.org)
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html(security@mozilla.org)
http://www.securityfocus.com/bid/70427(security@mozilla.org)
http://www.securitytracker.com/id/1031028(security@mozilla.org)
http://www.securitytracker.com/id/1031030(security@mozilla.org)
http://www.ubuntu.com/usn/USN-2372-1(security@mozilla.org)
http://www.ubuntu.com/usn/USN-2373-1(security@mozilla.org)
https://bugzilla.mozilla.org/show_bug.cgi?id=1062981(security@mozilla.org)
https://security.gentoo.org/glsa/201504-01(security@mozilla.org)
http://lists.fedoraproject.org/pipermail/package-announce/2014-November/141796.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141085.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00000.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00001.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00002.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-11/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/61387(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62021(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62022(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62023(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-3050(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-3061(af854a3a-2127-422b-91ae-364da2661108)
http://www.mozilla.org/security/announce/2014/mfsa2014-81.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/70427(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1031028(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1031030(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2372-1(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2373-1(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.mozilla.org/show_bug.cgi?id=1062981(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201504-01(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.