Mozilla Firefox Man-in-the-Middle Attack Vulnerability (CNVD-2016-00851)

Mozilla Firefox on Android is an open source web browser for the Android platform. Mozilla Firefox on Android fails to ensure that lightweight themes are installed using HTTPS, allowing remote attackers to perform man-in-the-middle attacks by modifying client-server data streams, changing theme...

CVE-2016-1948

Mozilla Firefox before 44.0 on Android does not ensure that HTTPS is used for a lightweight-theme installation, which allows man-in-the-middle attackers to replace a theme's images and colors by modifying the client-server data stream...