Your submission was sent successfully! Close

CVE-2014-1526

Published: 29 April 2014

The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.

Priority

Medium

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian
Upstream
Released (29.0)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [29.0+build1-0ubuntu0.14.04.2])