[USN-811-1] Firefox and Xulrunner vulnerability
Severity
Medium
CVEs
1
firefox-3.0, xulrunner-1.9 vulnerability
Juan Pablo Lopez Yacubian discovered that Firefox did not properly display
invalid URLs. If a user were tricked into accessing a malicious website, an
attacker could exploit this to spoof the location bar, such as in a
phishing attack. Furthermore, if the malicious website had a valid SSL
certificate, Firefox would display the spoofed page as trusted.
- ID
- USN-811-1
- Severity
- medium
- Severity from
- CVE-2009-2654
- URL
- https://ubuntu.com/security/notices/USN-811-1
- Published
-
2009-08-08T00:41:18
(15 years ago) - Modified
-
2009-08-08T00:41:18
(15 years ago) - Other Advisories
ELSA-2009-1430
GLSA-201301-01| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |