CVE 2016-5251
Mozilla Firefox before 48.0 allows remote attackers to spoof the location bar via crafted characters in the media type of a data: URL.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: http://www.mozilla.org...
- CONFIRM: https://bugzilla.mozil...
- SUSE: openSUSE-SU-2016:1964
- SUSE: openSUSE-SU-2016:2026
- UBUNTU: USN-3044-1
- BID: 92260
- GENTOO: GLSA-201701-15
- SECTRACK: 1036508
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
67d34a1
(Get the code!)