Here's the page we think you wanted. See search results instead:

Chat Live

Welcome

You are signed as:

My Profile
Logout

Please Confirm

Confirm your country to access relevant pricing, special offers, events, and contact information.

What are you looking for?

I'm looking for support Pro Oscilloscopes Handheld Spectrum Analyzers Compact Signal Generators Find a solution Get technical support Take a class Find us at events Premium used equipment KeysightCare Buy online

No product matches found - System Exception

Mozilla Firefox WebIDL Privilege Esacalation

Strike ID:

E14-45y01

CVSS:

9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)

False Positive:

Variants:

Year:

2014

Description

This strike exploits a privilege escalation vulnerability in Mozilla Firefox. The vulnerability is due to a failed security check allowing XUL applications to be loaded within an iframe via a call to window.open(). An attacker could exploit this vulnerability by enticing a user to view a malicious web page, possibly leading to execution of arbitrary code on the victim machine.

CVE

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1510

References

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/firefox_webidl_injection.rb

Mozilla Firefox WebIDL Privilege Esacalation

Description

CVE

References

Bid