4 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-6206
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to...
Important: firefox
Issue Overview: On some systems--depending on the graphics settings and drivers--it was possible to force an out-of-bounds read and leak memory data into the images created on the canvas element. This vulnerability affects Firefox 120, Firefox 115.5, and Thunderbird 115.5.0. CVE-2023-6204 It was...
Mozilla: Clickjacking permission prompts using the fullscreen transition
The Mozilla Foundation Security Advisory describes this flaw as: The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click where the permission grant butto...
SUSE CVE-2023-6206
The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click where the permission grant button would be about to appear. This vulnerability affects Firefox 12...