CVE-2014-8643

Published: Jan 14, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Mozilla Firefox before 35.0 on Windows allows remote attackers to bypass the Gecko Media Plugin (GMP) sandbox protection mechanism by leveraging access to the GMP process, as demonstrated by the OpenH264 plugin's process.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

1031533

vdb-entry

x_refsource_SECTRACK

openSUSE-SU-2015:0192

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2015:0077

vendor-advisory

x_refsource_SUSE

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

x_refsource_CONFIRM

https://bugzilla.mozilla.org/show_bug.cgi?id=1117140

x_refsource_CONFIRM

62446

third-party-advisory

x_refsource_SECUNIA

72043

vdb-entry

x_refsource_BID

firefox-cve20148643-sec-bypass(99962)

vdb-entry

x_refsource_XF

62253

third-party-advisory

x_refsource_SECUNIA

http://www.mozilla.org/security/announce/2014/mfsa2015-07.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-8643

Description

Affected Products

References