CVE-2017-5415: Input Validation

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1321719
• https://www.mozilla.org/en-US/security/advisories/mfsa2017-05/
• http://www.securityfocus.com/bid/96692
• http://www.securitytracker.com/id/1037966
• https://www.mozilla.org/security/advisories/mfsa2017-05/

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2017-05

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2017-5400
• CVE-2017-5401
• CVE-2017-5402
• CVE-2017-5403
• CVE-2017-5404
• CVE-2017-5406
• CVE-2017-5407
• CVE-2017-5410
• CVE-2017-5411
• CVE-2017-5409
• CVE-2017-5408
• CVE-2017-5412
• CVE-2017-5413
• CVE-2017-5414
• CVE-2017-5415
• CVE-2017-5416
• CVE-2017-5417
• CVE-2017-5425
• CVE-2017-5426
• CVE-2017-5427
• CVE-2017-5418
• CVE-2017-5419
• CVE-2017-5420
• CVE-2017-5405
• CVE-2017-5421
• CVE-2017-5422
• CVE-2017-5399
• CVE-2017-5398

Frequently Asked Questions

• What is the severity of CVE-2017-5415?

  CVE-2017-5415 is classified as a moderate severity vulnerability.

• How do I fix CVE-2017-5415?

  The recommended fix for CVE-2017-5415 is to upgrade to Firefox version 52 or later.

• What versions of Firefox are affected by CVE-2017-5415?

  CVE-2017-5415 affects all versions of Firefox prior to version 52.

• What type of attacks can CVE-2017-5415 potentially lead to?

  CVE-2017-5415 can lead to user confusion and further spoofing attacks through URL spoofing.

• Is there a workaround for CVE-2017-5415?

  There are no known workarounds for CVE-2017-5415 other than upgrading the browser.