Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote attackers to use certain redirect sequences to spoof the security lock icon that makes a web page appear to be encrypted.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.0103
Percentile: 0.76384

CVSS Scoring

Affected Products

• cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
• cpe:2.3:a:mozilla:mozilla:*:*:*:*:*:*:*:*
• cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

← Back to Home