mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-31 05:59:18 +02:00
782 B
782 B
CVE-2014-1507
Description
Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS before 1.2.2 allows attackers to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageFile object.
POC
Reference
Github
No PoCs found on GitHub currently.