Описание
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | thunderbird | Not affected | ||
| Red Hat Enterprise Linux 6 | thunderbird | Not affected | ||
| Red Hat Enterprise Linux 7 | thunderbird | Not affected | ||
| Red Hat Enterprise Linux 5 | firefox | Fixed | RHSA-2016:1217 | 08.06.2016 |
| Red Hat Enterprise Linux 6 | firefox | Fixed | RHSA-2016:1217 | 08.06.2016 |
| Red Hat Enterprise Linux 7 | firefox | Fixed | RHSA-2016:1217 | 08.06.2016 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1342893Mozilla: Addressbar spoofing though the SELECT element (MFSA 2016-52)
EPSS
Процентиль: 71%
0.00697
Низкий
4.3 Medium
CVSS2
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 9 лет назад
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu.
CVSS3: 6.5
nvd
больше 9 лет назад
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu.
CVSS3: 6.5
debian
больше 9 лет назад
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow rem ...
CVSS3: 6.5
github
больше 3 лет назад
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu.
EPSS
Процентиль: 71%
0.00697
Низкий
4.3 Medium
CVSS2