← back
CVE-2017-5417

CVE-2017-5417

EPSS 1.1%
When dragging content from the primary browser pane to the addressbar on a malicious site, it is possible to change the addressbar so that the displayed location following navigation does not match the URL of the newly loaded page. This allows for spoofing attacks. This vulnerability affects Firefox < 52.
Affected products
Mozilla · Firefox

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.mozilla.org/show_bug.cgi?id=791597https://www.mozilla.org/security/advisories/mfsa2017-05/http://www.securityfocus.com/bid/96692http://www.securitytracker.com/id/1037966