2 matches found
UBUNTU-CVE-2017-7844
A combination of an external SVG image referenced on a page and the coloring of anchor links stored within this image can be used to determine which pages a user has in their history. This can allow a malicious website to query user history. Note: This issue only affects Firefox 57. Earlier...
Mozilla Firefox Information Disclosure Vulnerability (CNVD-2017-38465)
Mozilla Firefox is a popular WEB browser. An information disclosure vulnerability exists in Mozilla Firefox's handling of external SVG graphics, which can be exploited by a remote attacker to submit a special web page and trick the user into parsing it, which can crash the application and obtain...