Mozilla Firefox prior to 42.0, when NTLM v1 is enabled for HTTP authentication, allows remote malicious users to obtain sensitive hostname information by constructing a crafted web site that sends an NTLM request and reads the Workstation field of an NTLM type 3 message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |