1
PublicDateAtUSN: 2017-03-07
2
Candidate: CVE-2017-5420
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5420
6
https://www.mozilla.org/en-US/security/advisories/mfsa2017-05/#CVE-2017-5420
7
https://usn.ubuntu.com/usn/usn-3216-1
9
A "javascript:" url loaded by a malicious page can obfuscate its location
10
by blanking the URL displayed in the addressbar, allowing for an attacker
11
to spoof an existing page without the malicious page's address being
12
displayed correctly. This vulnerability affects Firefox < 52.
18
Assigned-to: chrisccoulson
21
upstream_firefox: released (52.0)
22
precise_firefox: released (52.0+build2-0ubuntu0.12.04.1)
23
trusty_firefox: released (52.0+build2-0ubuntu0.14.04.1)
24
vivid/ubuntu-core_firefox: DNE
25
vivid/stable-phone-overlay_firefox: DNE
26
xenial_firefox: released (52.0+build2-0ubuntu0.16.04.1)
27
yakkety_firefox: released (52.0+build2-0ubuntu0.16.10.1)
28
zesty_firefox: released (52.0.1+build2-0ubuntu1)
29
devel_firefox: not-affected (52.0.1+build2-0ubuntu1)