Mozilla Firefox CVE-2014-1561 Weak Authentication Vulnerability

description-logoDescription

Mozilla developers David Chan and Gijs Kruitbosch reported that it is possible to create a drag and drop event in web content which mimics the behavior of a chrome customization event. This can occur when a user is customizing a page or panel. This results in a limited ability to move UI icons within the visible window but does not otherwise affect customization or window content.

affected-products-logoAffected Applications

Firefox

CVE References

CVE-2014-1561