CVE-2018-12381

Summary

Manually dragging and dropping an Outlook email message into the browser will trigger a page navigation when the message's mail columns are incorrectly interpreted as a URL. Note: this issue only affects Windows operating systems with Outlook installed. Other operating systems are not affected.. This vulnerability affects Firefox ESR < 60.2 and Firefox < 62.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox ESRunspecified < 60.2affected
MozillaFirefoxunspecified < 62affected

Weaknesses

  • Dragging and dropping Outlook email message results in page navigation

ADP Enrichment

CVE Program Container

Additional References

References