[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Firefox Development Tools Must Be Disabled.

ID: oval:org.secpod.oval:def:60320Date: (C)2019-12-30   (M)2023-07-04
Class: COMPLIANCEFamily: unix




Information needed by an attacker to begin looking for possible vulnerabilities in a web browser includes any information about the web browser and plug-ins or modules being used. When debugging or trace information is enabled in a production web browser, information about the web browser, such as web browser type, version, patches installed, plug-ins and modules installed, type of code being used by the hosted application, and any back-ends being used for data storage may be displayed. Since this information may be placed in logs and general messages during normal operation of the web browser, an attacker does not need to cause an error condition to gain this information.

Platform:
Linux
Product:
Mozilla Firefox
Reference:
CCE-94549-3
CCE    1
CCE-94549-3
XCCDF    1
xccdf_org.secpod_benchmark_stig_FIREFOX

© SecPod Technologies