CVE-2017-5395

Summary

Malicious sites can display a spoofed location bar on a subsequently loaded page when the existing location bar on the new page is scrolled out of view if navigations between pages can be timed correctly. Note: This issue only affects Firefox for Android. Other operating systems are not affected. This vulnerability affects Firefox < 51.

Affected Software

VendorProductVersion RangeStatus
n/an/an/aaffected

Weaknesses

  • Android location bar spoofing during scrolling

ADP Enrichment

CVE Program Container

Additional References

References