CVE-2016-1942

Опубликовано: 31 янв. 2016

Источник: debian

EPSS Низкий

Описание

Mozilla Firefox before 44.0 allows user-assisted remote attackers to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
iceweasel	fixed	44.0-1		package
iceweasel	not-affected		jessie	package
iceweasel	not-affected		wheezy	package
iceweasel	not-affected		squeeze	package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2016-09/

EPSS

Процентиль: 74%

0.0082

Низкий

Связанные уязвимости

CVE-2016-1942

CVSS3: 7.4

ubuntu

около 10 лет назад

Mozilla Firefox before 44.0 allows user-assisted remote attackers to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.

CVE-2016-1942

CVSS3: 7.4

nvd

около 10 лет назад

Mozilla Firefox before 44.0 allows user-assisted remote attackers to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.

GHSA-f5p6-qx62-vpqv

CVSS3: 7.4

github

больше 3 лет назад

Mozilla Firefox before 44.0 allows user-assisted remote attackers to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.

openSUSE-SU-2016:0309-1

suse-cvrf

около 10 лет назад

Security update for the MozillaFirefox, mozilla-nss and mozilla-nspr

EPSS

Процентиль: 74%

0.0082

Низкий