CVE-2015-4515
CVSS v2.0
4.3 (Medium)
EPSS
0.37 % (73th)
Affected Products
1
Advisories
3
Mozilla Firefox before 42.0, when NTLM v1 is enabled for HTTP authentication, allows remote attackers to obtain sensitive hostname information by constructing a crafted web site that sends an NTLM request and reads the Workstation field of an NTLM type 3 message.
Weaknesses
- CWE-200
- Exposure of Sensitive Information to an Unauthorized Actor
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2015-11-05 05:59:03
(8 years ago) - Updated Date
-
2016-12-07 18:13:13
(7 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...