CVE

CVE-2016-1965 (firefox, firefox_esr)

CVE-2016-1965 (firefox, firefox_esr)

Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 mishandle a navigation sequence that returns to the original page, which allows remote attackers to spoof the address bar via vectors involving the history.back method and the location.protocol property.

Source: CVE-2016-1965 (firefox, firefox_esr)

Exit mobile version