CVE-2017-5420: Input Validation

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1284395
• https://www.mozilla.org/en-US/security/advisories/mfsa2017-05/
• http://www.securityfocus.com/bid/96692
• http://www.securitytracker.com/id/1037966
• https://www.mozilla.org/security/advisories/mfsa2017-05/

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2017-05

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2017-5400
• CVE-2017-5401
• CVE-2017-5402
• CVE-2017-5403
• CVE-2017-5404
• CVE-2017-5406
• CVE-2017-5407
• CVE-2017-5410
• CVE-2017-5411
• CVE-2017-5409
• CVE-2017-5408
• CVE-2017-5412
• CVE-2017-5413
• CVE-2017-5414
• CVE-2017-5415
• CVE-2017-5416
• CVE-2017-5417
• CVE-2017-5425
• CVE-2017-5426
• CVE-2017-5427
• CVE-2017-5418
• CVE-2017-5419
• CVE-2017-5420
• CVE-2017-5405
• CVE-2017-5421
• CVE-2017-5422
• CVE-2017-5399
• CVE-2017-5398

Frequently Asked Questions

• What is the severity of CVE-2017-5420?

  CVE-2017-5420 is classified as a moderate severity vulnerability.

• How do I fix CVE-2017-5420?

  To fix CVE-2017-5420, upgrade to Firefox version 52 or newer.

• What impact does CVE-2017-5420 have on users?

  CVE-2017-5420 allows attackers to spoof URLs, potentially misleading users about the actual content of a page.

• Which versions of Firefox are affected by CVE-2017-5420?

  CVE-2017-5420 affects all Firefox versions prior to 52.

• Is there a workaround for CVE-2017-5420?

  There is no known workaround for CVE-2017-5420 other than updating to the patched version of Firefox.