Security Advisory

CVE-2014-1539

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-06-11 10:00:00

Last updated 2024-08-06 09:42:36

Assigner mozilla

State PUBLISHED

Description

Mozilla Firefox before 30.0 and Thunderbird through 24.6 on OS X do not ensure visibility of the cursor after interaction with a Flash object and a DIV element, which makes it easier for remote attackers to conduct clickjacking attacks via JavaScript code that produces a fake cursor image.

← Browse all CVEs View on cve.org ↗