CVE-2017-7817

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 56

Description: A spoofing issue occurs when a page switches to fullscreen mode without user notification, allowing a fake address bar to be displayed. This enables an attacker to spoof the actual page loaded and in use. The issue is related to insufficient input validation when using fullscreen mode. It may allow a remote attacker to conduct spoofing attacks by replacing the page or URI. This issue specifically affects Firefox for Android, with other operating systems not being affected.

Recommendations: For versions prior to 56, update to version 56 or later to resolve the issue. As a temporary workaround, consider disabling fullscreen mode until a patch is available. Restrict access to untrusted websites to minimize the risk of exploitation.