PT-2015-2628 · Mozilla+1 · Firefox+1

Jordi Chancel

·

Publicado

2015-11-05

·

Atualizado

2024-12-12

·

CVE-2015-7185

CVSS v2.0

4.3

Média

VetorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 42.0 on Android
Description The issue is related to errors in security settings, allowing remote attackers to spoof the address bar via crafted JavaScript code. This can occur when the browser exits fullscreen mode and fails to restore the address bar properly.
Recommendations For versions prior to 42.0, update to version 42.0 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-254

Identificadores relacionados

BDU:2015-11993
CVE-2015-7185
OPENSUSE-SU-2015_1942-1
OPENSUSE-SU-2024:10071-1
OPENSUSE-SU-2024:14572-1

Produtos afetados

Firefox
Suse