CVE-2014-1510

CRITICAL EXPLOITED

Firefox < 28.0 - Remote Code Execution via Web IDL Fragment

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2014-1510 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including Marius Mlynski, joev, including a Metasploit module exploits/multi/browser/firefox_webidl_injection.

AI-analyzed exploit summary This Metasploit module exploits CVE-2014-1510 and CVE-2014-1511 to achieve remote code execution on Firefox 22-27 by abusing privilege escalation vulnerabilities in Firefox's JavaScript APIs. It uses a multi-step approach involving WebIDL injection and chrome-privileged window manipulation.

Description

The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to execute arbitrary JavaScript code with chrome privileges by using an IDL fragment to trigger a window.open call.

Exploits (2)

exploitdb WORKING POC
rubyremotemultiple
https://www.exploit-db.com/exploits/34448

This Metasploit module exploits CVE-2014-1510 and CVE-2014-1511 to achieve remote code execution on Firefox 22-27 by abusing privilege escalation vulnerabilities in Firefox's JavaScript APIs. It uses a multi-step approach involving WebIDL injection and chrome-privileged window manipulation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Mozilla Firefox 22.0 to 27.0
No auth needed
Prerequisites: Victim must visit a malicious webpage using a vulnerable version of Firefox
devstral-2 · analyzed Feb 19, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Marius Mlynski, joev · rubypocfirefox
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/firefox_webidl_injection.rb

This Metasploit module exploits two Firefox privilege escalation vulnerabilities (CVE-2014-1510 and CVE-2014-1511) to achieve remote code execution by injecting privileged JavaScript via WebIDL manipulation and chrome:// URL loading.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Firefox 22.0 to 27.0
No auth needed
Prerequisites: Victim must visit a malicious webpage · Firefox version between 22.0 and 27.0
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (14)

Core 14
Core References
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0310.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2014/dsa-2911
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201504-01
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00016.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2151-1
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/66206
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2014/dsa-2881
Exploit, Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=982906
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.html
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0316.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00016.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00022.html

Scores

CVSS v3 9.8
EPSS 0.7109
EPSS Percentile 98.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2016-08-04
CWE
CWE-269
Status published
Products (24)
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 12.10
canonical/ubuntu_linux 13.10
debian/debian_linux 7.0
debian/debian_linux 8.0
mozilla/firefox < 28.0
mozilla/seamonkey < 2.25
mozilla/thunderbird < 24.4
opensuse/opensuse 11.4
opensuse/opensuse 12.3
... and 14 more
Published Mar 19, 2014
Tracked Since Feb 18, 2026