Address Bar Spoofing Vulnerability in Mozilla Firefox for Android

CVE-2015-4476 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Mozilla Firefox before 41.0 on Android allows user-assisted remote attackers to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demonstrated by spoofing an SSL attribute.

Learn more about our Cis Benchmark Audit For Google Android.