The vulnerabilities of the Firefox browser, Firefox ESR, and the Thunderbird email client allow attackers to bypass the secure context for cookies with prefixes __Host and __Secure, and re-record these cookies.
The vulnerability of Firefox browsers, Firefox ESR, and the email client Thunderbird lies in the use of cookies with prefixes Host and Secure, without validation or verification of their integrity. Exploiting this vulnerability allows an attacker to bypass the security restrictions for cookies wi...