// For flags

CVE-2014-8639

Mozilla: Cookie injection through Proxy Authenticate responses (MFSA 2015-04)

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 do not properly interpret Set-Cookie headers within responses that have a 407 (aka Proxy Authentication Required) status code, which allows remote HTTP proxy servers to conduct session fixation attacks by providing a cookie name that corresponds to the session cookie of the origin server.

Mozilla Firefox anterior a 35.0, Firefox ESR 31.x anterior a 31.4, Thunderbird anterior a 31.4, y SeaMonkey anterior a 2.32 no interprete correctamente cabeceras Set-Cookie dentro de respuestas que tienen un código de estatus 407 (también conocido como Proxy Authentication Required), lo que permite a servidores proxy remotos HTTP realizar ataques de fijación de sesiones mediante la provisión de un nombre de cookie que corresponde con la cookie de la sesión de servidor de origen.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2014-11-06 CVE Reserved
  • 2015-01-14 CVE Published
  • 2024-08-06 CVE Updated
  • 2024-08-26 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
CAPEC
References (41)
URL Tag Source
http://linux.oracle.com/errata/ELSA-2015-0046.html X_refsource_confirm
http://linux.oracle.com/errata/ELSA-2015-0047.html X_refsource_confirm
http://secunia.com/advisories/62237 Third Party Advisory
http://secunia.com/advisories/62242 Third Party Advisory
http://secunia.com/advisories/62250 Third Party Advisory
http://secunia.com/advisories/62253 Third Party Advisory
http://secunia.com/advisories/62259 Third Party Advisory
http://secunia.com/advisories/62273 Third Party Advisory
http://secunia.com/advisories/62274 Third Party Advisory
http://secunia.com/advisories/62283 Third Party Advisory
http://secunia.com/advisories/62293 Third Party Advisory
http://secunia.com/advisories/62304 Third Party Advisory
http://secunia.com/advisories/62313 Third Party Advisory
http://secunia.com/advisories/62315 Third Party Advisory
http://secunia.com/advisories/62316 Third Party Advisory
http://secunia.com/advisories/62418 Third Party Advisory
http://secunia.com/advisories/62446 Third Party Advisory
http://secunia.com/advisories/62657 Third Party Advisory
http://secunia.com/advisories/62790 Third Party Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html X_refsource_confirm
http://www.securityfocus.com/bid/72046 Vdb Entry
http://www.securitytracker.com/id/1031533 Vdb Entry
http://www.securitytracker.com/id/1031534 Vdb Entry
https://bugzilla.mozilla.org/show_bug.cgi?id=1095859 X_refsource_confirm
https://exchange.xforce.ibmcloud.com/vulnerabilities/99959 Vdb Entry
URL Date SRC
URL Date SRC
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00014.html 2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00032.html 2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00033.html 2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00036.html 2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00002.html 2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html 2017-09-08
http://lists.opensuse.org/opensuse-updates/2015-01/msg00071.html 2017-09-08
http://rhn.redhat.com/errata/RHSA-2015-0046.html 2017-09-08
http://rhn.redhat.com/errata/RHSA-2015-0047.html 2017-09-08
http://www.debian.org/security/2015/dsa-3127 2017-09-08
http://www.debian.org/security/2015/dsa-3132 2017-09-08
http://www.mozilla.org/security/announce/2014/mfsa2015-04.html 2017-09-08
http://www.ubuntu.com/usn/USN-2460-1 2017-09-08
https://security.gentoo.org/glsa/201504-01 2017-09-08
https://access.redhat.com/security/cve/CVE-2014-8639 2015-01-13
https://bugzilla.redhat.com/show_bug.cgi?id=1180967 2015-01-13
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Mozilla
Search vendor "Mozilla"
 Seamonkey
Search vendor "Mozilla" for product "Seamonkey"
 <= 2.31
Search vendor "Mozilla" for product "Seamonkey" and version " <= 2.31"
-
Affected
Mozilla
Search vendor "Mozilla"
 Firefox
Search vendor "Mozilla" for product "Firefox"
 <= 34.0.5
Search vendor "Mozilla" for product "Firefox" and version " <= 34.0.5"
-
Affected
Mozilla
Search vendor "Mozilla"
 Firefox Esr
Search vendor "Mozilla" for product "Firefox Esr"
 31.0
Search vendor "Mozilla" for product "Firefox Esr" and version "31.0"
-
Affected
Mozilla
Search vendor "Mozilla"
 Firefox Esr
Search vendor "Mozilla" for product "Firefox Esr"
 31.1.0
Search vendor "Mozilla" for product "Firefox Esr" and version "31.1.0"
-
Affected
Mozilla
Search vendor "Mozilla"
 Firefox Esr
Search vendor "Mozilla" for product "Firefox Esr"
 31.1.1
Search vendor "Mozilla" for product "Firefox Esr" and version "31.1.1"
-
Affected
Mozilla
Search vendor "Mozilla"
 Firefox Esr
Search vendor "Mozilla" for product "Firefox Esr"
 31.2
Search vendor "Mozilla" for product "Firefox Esr" and version "31.2"
-
Affected
Mozilla
Search vendor "Mozilla"
 Firefox Esr
Search vendor "Mozilla" for product "Firefox Esr"
 31.3.0
Search vendor "Mozilla" for product "Firefox Esr" and version "31.3.0"
-
Affected
Mozilla
Search vendor "Mozilla"
 Thunderbird
Search vendor "Mozilla" for product "Thunderbird"
 <= 31.3.0
Search vendor "Mozilla" for product "Thunderbird" and version " <= 31.3.0"
-
Affected