VYPR
Unrated severityNVD Advisory· Published Feb 6, 2014· Updated Jun 17, 2026

CVE-2014-1480

CVE-2014-1480

Description

The file-download implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 does not properly restrict the timing of button selections, which allows remote attackers to conduct clickjacking attacks, and trigger unintended launching of a downloaded file, via a crafted web site.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.