Mozilla Firefox CVE-2016-5267 Input Validation Bypass Vulnerability

description-logoDescription

Security researcher Rafay Baloch reported a mechanism to spoof the addressbar in Firefox for Android using right-to-left character sets when combined with left-to-right characters. This can be used to cause only certain portions of the loaded left-to-right character portion of the URL to be displayed, misleading users as to what site is loaded, possibly leading to phishing attacks.

affected-products-logoAffected Applications

Firefox

CVE References

CVE-2016-5267