FortiClient VulnerabilityMozilla Firefox CVE-2018-18499 Denial of Service Vulnerability
Description
A same-origin policy violation allowing the theft of cross-origin URL entries when using a meta http-equiv=\"refresh\" on a page to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and Thunderbird < 60.2.1.
Affected Applications
Firefox
CVE References
CVE-2018-18499Other References
https://nvd.nist.gov/vuln/detail/CVE-2018-18499| ID | 61861 |
| Created | Jan 06, 2020 |
| Description Updated |
Dec 19, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Mozilla |
| Patch | auto |
| Application | Firefox |