CVE-2014-1539

Priority
Description
Mozilla Firefox before 30.0 and Thunderbird through 24.6 on OS X do not
ensure visibility of the cursor after interaction with a Flash object and a
DIV element, which makes it easier for remote attackers to conduct
clickjacking attacks via JavaScript code that produces a fake cursor image.
Notes
 chrisccoulson> Only affects Firefox on OS X
Assigned-to
chrisccoulson
Package
Upstream:released (30.0)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
More Information

Updated: 2019-01-14 22:13:33 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)