Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from the Firefox profile directory via a crafted application. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1515.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox on Android 权限许可和访问控制漏洞
Vulnerability Description
Mozilla Firefox on Android和Desktop Firefox都是美国Mozilla基金会开发的开源Web浏览器。前者是基于Android平台下使用;后者是一个桌面版。 Mozilla Firefox on Android 31.0版本和30.0版本中存在安全漏洞,该漏洞源于在处理文件过程中,程序没有限制将本地文件复制到SD卡。攻击者可通过特制的应用程序利用该漏洞从Firefox配置文件目录中获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A