CVE 2015-7211
Mozilla Firefox before 43.0 mishandles the # (number sign) character in a data: URI, which allows remote attackers to spoof web sites via unspecified vectors.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: http://www.mozilla.org...
- CONFIRM: https://bugzilla.mozil...
- FEDORA: FEDORA-2015-51b1105902
- FEDORA: FEDORA-2015-7ab3d3afcf
- SUSE: openSUSE-SU-2016:0307
- SUSE: openSUSE-SU-2016:0308
- BID: 79280
- GENTOO: GLSA-201512-10
- SUSE: openSUSE-SU-2015:2353
- UBUNTU: USN-2833-1
- SECTRACK: 1034426
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)