Mozilla Firefox Obfuscated URLs Within Iframes Vulnerability
Severity: : Medium
Advisory Date: 21 lipca 2015
DESCRIPTION
When a Firefox user visits a site with a url that might be deceptive, Firefox will stop the load and confirm with the user that they are really visiting the site they expected to visit. However, this same warning is not presented when an iframe on the page attempts to load such a URL.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004371
Trend Micro Deep Security DPI Rule Name: 1004371 - Mozilla Firefox Obfuscated URLs Within Iframes Vulnerability
AFFECTED SOFTWARE AND VERSION:
- Mozilla Firefox