CVE-2019-9809

Summary

If the source for resources on a page is through an FTP connection, it is possible to trigger a series of modal alert messages for these resources through invalid credentials or locations. These messages cannot be immediately dismissed, allowing for a denial of service (DOS) attack. This vulnerability affects Firefox < 66.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 66affected

Weaknesses

  • Denial of service through FTP modal alert error messages

ADP Enrichment

CVE Program Container

Additional References

References