CVE-2015-4515

Priority
Description
Mozilla Firefox before 42.0, when NTLM v1 is enabled for HTTP
authentication, allows remote attackers to obtain sensitive hostname
information by constructing a crafted web site that sends an NTLM request
and reads the Workstation field of an NTLM type 3 message.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (42.0)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [42.0+build2-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (42.0+build2-0ubuntu1)
More Information

Updated: 2020-09-10 04:44:35 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)