KLA10446
CI vulnerability in Mozilla products
Обновлено: 17/06/2019
Дата обнаружения
13/01/2015
Уровень угрозы
High
Описание

Improper interpretation of HTTP headers was found in Mozilla products. By exploiting this vulnerability malicious users can inject cookie. This vulnerability can be exploited via specially designed HTTP headers.

Пораженные продукты

Mozilla Firefox earlier than 35
Mozilla Firefox ESR earlier than 31.4
Mozilla SeaMonkey earlier than 2.32
Mozilla Thunderbird earlier than 31.4

Решение

Update to latest version
Get Thunderbird
Get Firefox
Get SeaMonkey

Первичный источник обнаружения
MFSA
Оказываемое влияние
?
CI 
[?]
Связанные продукты
Mozilla Firefox
Mozilla Thunderbird
Mozilla SeaMonkey
Mozilla Firefox ESR
CVE-IDS