CVE-2014-1499
CVE-2014-1499
Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certain time during generation of this prompt.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00016.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-03/msg00022.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-04/msg00016.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=961512https://security.gentoo.org/glsa/201504-01http://www.mozilla.org/security/announce/2014/mfsa2014-19.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html