Lucene search
MozillaCVELIST:CVE-2017-7815HistoryJun 11, 2018 - 9:00 p.m.
CVE-2017-7815
2018-06-1121:00:00
mozilla
www.cve.org
1
On pages containing an iframe, the “data:” protocol can be used to create a modal dialog through Javascript that will have an arbitrary domains as the dialog’s location, spoofing of the origin of the modal dialog from the user view. Note: This attack only affects installations with e10 multiprocess turned off. Installations with e10s turned on do not support the modal dialog functionality. This vulnerability affects Firefox < 56.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "56",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2017-7815
2017-10-02 00:00:00
debiancve
debiancve
CVE-2017-7815
2018-06-11 21:29:10
prion
prion
Design/Logic Flaw
2018-06-11 21:29:00
nvd
nvd
CVE-2017-7815
2018-06-11 21:29:10
cve
cve
CVE-2017-7815
2018-06-11 21:29:10
ubuntu
ubuntu
Firefox vulnerabilities
2017-10-02 00:00:00
Firefox regression
2017-10-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3435-2)
2017-10-06 00:00:00
Ubuntu: Security Advisory (USN-3435-1)
2017-10-05 00:00:00
Mozilla Firefox Security Advisories (MFSA2017-21, MFSA2017-22) - Windows
2017-10-03 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS : Firefox vulnerabilities (USN-3435-1)
2017-10-03 00:00:00
Mozilla Firefox < 56 Multiple Vulnerabilities
2017-10-06 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Firefox regression (USN-3435-2)
2017-10-05 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 56 — Mozilla
2017-09-28 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2017-09-28 00:00:00
kaspersky
kaspersky
KLA11109 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2017-09-28 00:00:00