Security Advisory

CVE-2015-7195

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-11-05 02:00:00

Last updated 2024-08-06 07:43:45

Assigner mozilla

State PUBLISHED

Description

The URL parsing implementation in Mozilla Firefox before 42.0 improperly recognizes escaped characters in hostnames within Location headers, which allows remote attackers to obtain sensitive information via vectors involving a redirect.

← Browse all CVEs View on cve.org ↗