CVE-2018-18510

Summary

The about:crashcontent and about:crashparent pages can be triggered by web content. These pages are used to crash the loaded page or the browser for test purposes. This issue allows for a non-persistent denial of service (DOS) attack by a malicious site which links to these pages. This vulnerability affects Firefox < 64.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 64affected

Weaknesses

  • Web content can link to internal about:crashcontent and about:crashparent pages

ADP Enrichment

CVE Program Container

Additional References

References