← back
CVE-2017-7783

CVE-2017-7783

EPSS 13.7%
If a long user name is used in a username/password combination in a site URL (such as " http://UserName:Password@example.com"), the resulting modal prompt will hang in a non-responsive state or crash, causing a denial of service. This vulnerability affects Firefox < 55.
Affected products
Mozilla · Firefox
public PoCs found2
cve_referencewww.exploit-db.com/exploits/43020/unverifiedexploitdbwww.exploit-db.com/exploits/43020unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1360842https://www.exploit-db.com/exploits/43020/https://www.mozilla.org/security/advisories/mfsa2017-18/http://www.securityfocus.com/bid/100401http://www.securitytracker.com/id/1039124