Local Shortcut File Same-Origin Policy Bypass Vulnerability

Local Shortcut File Same-Origin Policy Bypass Vulnerability

CVE-2016-5291 · MEDIUM Severity

AV:L/AC:L/AU:N/C:C/I:N/A:N

A same-origin policy bypass with local shortcut files to load arbitrary local content from disk. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.

Learn more about our Web Application Penetration Testing UK.