ByteOS Network

CVE Vulnerability Details :

CVE-2014-1530

PUBLISHED

More Info Official Page

Assigner-mozilla

Assigner Org ID-f16b083a-5664-49f3-a51e-8d479e5ed7fe

Published At-30 Apr, 2014 | 10:00

Updated At-06 Aug, 2024 | 09:42

▼CVE Numbering Authority (CNA)

The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL with a spoofed baseURI property, and conduct cross-site scripting (XSS) attacks, via a crafted web site that performs history navigation.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://rhn.redhat.com/errata/RHSA-2014-0448.html	vendor-advisory x_refsource_REDHAT
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132332.html	vendor-advisory x_refsource_FEDORA
http://lists.opensuse.org/opensuse-updates/2014-05/msg00013.html	vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-updates/2014-05/msg00010.html	vendor-advisory x_refsource_SUSE
http://www.mozilla.org/security/announce/2014/mfsa2014-43.html	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-updates/2014-05/msg00033.html	vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html	vendor-advisory x_refsource_SUSE
https://security.gentoo.org/glsa/201504-01	vendor-advisory x_refsource_GENTOO
http://www.securitytracker.com/id/1030165	vdb-entry x_refsource_SECTRACK
http://secunia.com/advisories/59866	third-party-advisory x_refsource_SECUNIA
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-updates/2014-05/msg00040.html	vendor-advisory x_refsource_SUSE
http://www.ubuntu.com/usn/USN-2189-1	vendor-advisory x_refsource_UBUNTU
http://rhn.redhat.com/errata/RHSA-2014-0449.html	vendor-advisory x_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html	vendor-advisory x_refsource_SUSE
http://www.debian.org/security/2014/dsa-2918	vendor-advisory x_refsource_DEBIAN
http://www.debian.org/security/2014/dsa-2924	vendor-advisory x_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-2185-1	vendor-advisory x_refsource_UBUNTU
http://www.securityfocus.com/bid/67137	vdb-entry x_refsource_BID
http://www.securitytracker.com/id/1030164	vdb-entry x_refsource_SECTRACK
https://bugzilla.mozilla.org/show_bug.cgi?id=895557	x_refsource_CONFIRM
http://www.securitytracker.com/id/1030163	vdb-entry x_refsource_SECTRACK
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html	vendor-advisory x_refsource_FEDORA

Hyperlink: http://rhn.redhat.com/errata/RHSA-2014-0448.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132332.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://lists.opensuse.org/opensuse-updates/2014-05/msg00013.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://lists.opensuse.org/opensuse-updates/2014-05/msg00010.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.mozilla.org/security/announce/2014/mfsa2014-43.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-updates/2014-05/msg00033.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://security.gentoo.org/glsa/201504-01

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://www.securitytracker.com/id/1030165

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://secunia.com/advisories/59866

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-updates/2014-05/msg00040.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.ubuntu.com/usn/USN-2189-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://rhn.redhat.com/errata/RHSA-2014-0449.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.debian.org/security/2014/dsa-2918

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.debian.org/security/2014/dsa-2924

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.ubuntu.com/usn/USN-2185-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://www.securityfocus.com/bid/67137

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.securitytracker.com/id/1030164

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: https://bugzilla.mozilla.org/show_bug.cgi?id=895557

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securitytracker.com/id/1030163

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html

Resource:

vendor-advisory

x_refsource_FEDORA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://rhn.redhat.com/errata/RHSA-2014-0448.html	vendor-advisory x_refsource_REDHAT x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132332.html	vendor-advisory x_refsource_FEDORA x_transferred
http://lists.opensuse.org/opensuse-updates/2014-05/msg00013.html	vendor-advisory x_refsource_SUSE x_transferred
http://lists.opensuse.org/opensuse-updates/2014-05/msg00010.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.mozilla.org/security/announce/2014/mfsa2014-43.html	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-updates/2014-05/msg00033.html	vendor-advisory x_refsource_SUSE x_transferred
http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html	vendor-advisory x_refsource_SUSE x_transferred
https://security.gentoo.org/glsa/201504-01	vendor-advisory x_refsource_GENTOO x_transferred
http://www.securitytracker.com/id/1030165	vdb-entry x_refsource_SECTRACK x_transferred
http://secunia.com/advisories/59866	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-updates/2014-05/msg00040.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.ubuntu.com/usn/USN-2189-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://rhn.redhat.com/errata/RHSA-2014-0449.html	vendor-advisory x_refsource_REDHAT x_transferred
http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.debian.org/security/2014/dsa-2918	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.debian.org/security/2014/dsa-2924	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.ubuntu.com/usn/USN-2185-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://www.securityfocus.com/bid/67137	vdb-entry x_refsource_BID x_transferred
http://www.securitytracker.com/id/1030164	vdb-entry x_refsource_SECTRACK x_transferred
https://bugzilla.mozilla.org/show_bug.cgi?id=895557	x_refsource_CONFIRM x_transferred
http://www.securitytracker.com/id/1030163	vdb-entry x_refsource_SECTRACK x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html	vendor-advisory x_refsource_FEDORA x_transferred