Lucene search
PRIOn knowledge basePRION:CVE-2017-7815HistoryJun 11, 2018 - 9:29 p.m.
Design/Logic Flaw
2018-06-1121:29:00
PRIOn knowledge base
www.prio-n.com
1
On pages containing an iframe, the “data:” protocol can be used to create a modal dialog through Javascript that will have an arbitrary domains as the dialog’s location, spoofing of the origin of the modal dialog from the user view. Note: This attack only affects installations with e10 multiprocess turned off. Installations with e10s turned on do not support the modal dialog functionality. This vulnerability affects Firefox < 56.
Related
cvelist
cvelist
CVE-2017-7815
2018-06-11 21:00:00
ubuntucve
ubuntucve
CVE-2017-7815
2017-10-02 00:00:00
debiancve
debiancve
CVE-2017-7815
2018-06-11 21:29:10
nvd
nvd
CVE-2017-7815
2018-06-11 21:29:10
cve
cve
CVE-2017-7815
2018-06-11 21:29:10
ubuntu
ubuntu
Firefox regression
2017-10-04 00:00:00
Firefox vulnerabilities
2017-10-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3435-2)
2017-10-06 00:00:00
Ubuntu: Security Advisory (USN-3435-1)
2017-10-05 00:00:00
Mozilla Firefox Security Advisories (MFSA2017-21, MFSA2017-22) - Windows
2017-10-03 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS : Firefox vulnerabilities (USN-3435-1)
2017-10-03 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Firefox regression (USN-3435-2)
2017-10-05 00:00:00
Mozilla Firefox < 56 Multiple Vulnerabilities
2017-10-06 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 56 — Mozilla
2017-09-28 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2017-09-28 00:00:00
kaspersky
kaspersky
KLA11109 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2017-09-28 00:00:00