2 matches found
CVE-2018-5173
The filename appearing in the "Downloads" panel improperly renders some Unicode characters, allowing for the file name to be spoofed. This can be used to obscure the file extension of potentially executable files from user view in the panel. Note: the dialog to open the file will show the full,...
CVE-2018-5173
CVE-2018-5173 : In Firefox, the filename shown in the Downloads panel can be spoofed by rendering certain Unicode characters differently, allowing a deception of the file name and potentially masking the extension of executable files. The dialog used to open the file still shows the true filename...