CVE-2016-5282 in Firefoxinformazioni

Riassunto

di MITRE

Mozilla Firefox before 49.0 does not properly restrict the scheme in favicon requests, which might allow remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by a jar: URL for a favicon resource.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

03/06/2016

Divulgazione

22/09/2016

Moderazione

accettato

Voce

VDB-91882

CPE

pronto

CWE

CWE-200 (confermato)

CVSS

6.5 (NVD)

EPSS

0.01619

KEV

Attività

molto basso

Settore

Homeoffice, Pharma, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5282
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5282
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5282/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!