CVE-2015-7188

Priority
Description
Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote
attackers to bypass the Same Origin Policy for an IP address origin, and
conduct cross-site scripting (XSS) attacks, by appending whitespace
characters to an IP address string.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (42.0)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [42.0+build2-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (42.0+build2-0ubuntu1)
Package
Priority: Low
Upstream:released (38.4.0)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1:38.4.0+build3-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (1:38.4.0+build3-0ubuntu1)
More Information

Updated: 2020-01-29 19:53:04 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)