Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2014-1526

Disclosure Date: April 30, 2014
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

Technical Analysis