CVE-2017-5417

Summary

When dragging content from the primary browser pane to the addressbar on a malicious site, it is possible to change the addressbar so that the displayed location following navigation does not match the URL of the newly loaded page. This allows for spoofing attacks. This vulnerability affects Firefox < 52.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 52affected

Weaknesses

  • Addressbar spoofing by draging and dropping URLs

ADP Enrichment

CVE Program Container

Additional References

References