SecuritySpace - CVE-2014-1566

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2014-1566

Description: Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from the Firefox profile directory via a crafted application. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1515.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-1566
BugTraq ID: 69522
http://www.securityfocus.com/bid/69522
https://security.gentoo.org/glsa/201504-01
http://www.securitytracker.com/id/1030792

CVE ID:	CVE-2014-1566
Description:	Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from the Firefox profile directory via a crafted application. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1515.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1566 BugTraq ID: 69522 http://www.securityfocus.com/bid/69522 https://security.gentoo.org/glsa/201504-01 http://www.securitytracker.com/id/1030792