Mozilla Firefox CVE-2014-1479 Vulnerability

description-logoDescription

Security researcher Cody Crews reported a method to bypass System Only Wrappers (SOW) by using XML Binding Language (XBL) content scopes to clone protected XUL elements. This could be used to clone anonymous nodes, making trusted XUL content web accessible.

affected-products-logoAffected Applications

Firefox

CVE References

CVE-2014-1479