Mozilla Firefox CVE-2014-8643 Weak Authentication Vulnerability

description-logoDescription

Security researcher Nils discovered a mechanism to break out of the Gecko Media Plugin (GMP) sandbox on Windows systems. The GMP sandbox is currently only used to host h.264 video playback using the OpenH264 plugin but is being developed to host other other media plugins. This bug would allow an attacker to escape or bypass the GMP sandbox if another exploitable bug is found in a GMP media plugin which allowed them to compromise the GMP process.

affected-products-logoAffected Applications

Firefox

CVE References

CVE-2014-8643