Thunderbird, Firefox - (bulletinjan2018)ID: oval:org.secpod.oval:def:2101617 | Date: (C)2020-01-02 (M)2022-10-10 |
Class: PATCH | Family: unix |
If right-to-left text is used in the addressbar with left-to-right alignment, it is possible in some circumstances to scroll this text to spoof the displayed URL. This issue could result in the wrong URL being displayed as a location, which can mislead users to believe they are on a different site than the one loaded. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
Product: |
web/data/firefox-bookmarks |
web/browser/firefox |
web/browser/firefox/plugin/firefox-java |
mail/thunderbird |
mail/thunderbird/plugin/thunderbird-lightning |