|Date: (C)2008-12-17 (M)2017-11-18|| |
Mozilla Firefox 3.x before 3.0.5 and 2.x before 220.127.116.11, Thunderbird 2.x before 18.104.22.168, and SeaMonkey 1.x before 1.1.14 does not properly parse URLs with leading whitespace or control characters, which might allow remote attackers to misrepresent URLs and simplify phishing attacks.
|CVSS Score: 4.3||Access Vector: NETWORK|
|Exploit Score: 8.6||Access Complexity: MEDIUM|
|Impact Score: 2.9||Authentication: NONE|
| ||Confidentiality: NONE|
| ||Integrity: PARTIAL|
| ||Availability: NONE|