Lucene search

mozilla -- data: URL can inherit wrong origin after an HTTP redirect

🗓️ 28 Nov 2016 00:00:00Reported by FreeBSDType

Mozilla reports HTTP redirect can assign wrong origin to data: URL, leading to same-origin violations and cookie security risks

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 29
Mozilla	Security vulnerabilities fixed in Firefox 50.0.1 — Mozilla	28 Nov 201600:00	–	mozilla
OpenVAS	Mozilla Firefox Security Advisory (MFSA2016-91) - Linux	8 Nov 202100:00	–	openvas
OpenVAS	Mozilla Firefox Security Advisories (MFSA2016-91, MFSA2016-91) - Mac OS X	1 Dec 201600:00	–	openvas
OpenVAS	Mozilla Firefox Security Advisories (MFSA2016-91, MFSA2016-91) - Windows	1 Dec 201600:00	–	openvas
OpenVAS	openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2016:2994-1)	5 Dec 201600:00	–	openvas
OpenVAS	Ubuntu: Security Advisory (USN-3140-1)	1 Dec 201600:00	–	openvas
OpenVAS	openSUSE: Security Advisory for Mozilla (openSUSE-SU-2016:3011-1)	6 Dec 201600:00	–	openvas
OpenVAS	Mageia: Security Advisory (MGASA-2017-0323)	28 Jan 202200:00	–	openvas
Cvelist	CVE-2016-9078	11 Jun 201821:00	–	cvelist
Tenable Nessus	FreeBSD : mozilla -- data: URL can inherit wrong origin after an HTTP redirect (f90fce70-ecfa-4f4d-9ee8-c476dbf4bf0e)	29 Nov 201600:00	–	nessus

Source	Link
mozilla	www.mozilla.org/security/advisories/mfsa2016-91/

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	firefox	50.0.1,1	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Nov 2016 00:00Current

0.2Low risk

Vulners AI Score0.2

CVSS26.8

CVSS38.8

EPSS0.00728