Mozilla Firefox CVE-2015-4483 Weak Authentication Vulnerability

description-logoDescription

Security researcher Masato Kinugawa reported that opening a target page using a POST to the url prefixed with the feed: protocol disables the mixed content blocker for that page. This could allow for the risk of a man-in-the-middle (MITM) scripting attack on pages that accidentally include insecure content which would otherwise be blocked.

affected-products-logoAffected Applications

Firefox

CVE References

CVE-2015-4483