CVE-2013-5614 (retired)

Priority
Description
Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly
consider the sandbox attribute of an IFRAME element during processing of a
contained OBJECT element, which allows remote attackers to bypass intended
sandbox restrictions via a crafted web site.
Assigned-to
chrisccoulson
Package
Upstream:released (26.0)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
More Information

Updated: 2019-03-26 12:10:31 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)