Mozilla · Firefox · CVE-2016-5267
**Name of the Vulnerable Software and Affected Versions**
Mozilla Firefox versions prior to 48.0 on Android
**Description**
The issue exists due to insufficient input validation, allowing a remote attacker to spoof the address bar by using left-to-right characters in conjunction with a right-to-left character set.
**Recommendations**
For versions prior to 48.0 on Android, update to version 48.0 or later to resolve the issue.