Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.3
CVSSv3

CVE-2017-7763

Published: 11/06/2018 Updated: 14/08/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Firefox

Vulnerability Summary

Default fonts on OS X display some Tibetan characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

mozilla firefox

mozilla firefox_esr

mozilla thunderbird

debian debian linux 9.0

debian debian linux 8.0

Vendor Advisories

Mozilla: Security vulnerabilities fixed in Firefox ESR 52.2
Mozilla Foundation Security Advisory 2017-16 Security vulnerabilities fixed in Firefox ESR 522 Announced June 13, 2017 Impact critical Products Firefox ESR Fixed in Firefox ESR 522 ...
Mozilla: Security vulnerabilities fixed in Firefox 54
Mozilla Foundation Security Advisory 2017-15 Security vulnerabilities fixed in Firefox 54 Announced June 13, 2017 Impact critical Products Firefox Fixed in Firefox 54 ...
Mozilla: Security vulnerabilities fixed in Thunderbird 52.2
Mozilla Foundation Security Advisory 2017-17 Security vulnerabilities fixed in Thunderbird 522 Announced June 14, 2017 Impact critical Products Thunderbird Fixed in Thunderbird 522 ...

References

CWE-20https://www.mozilla.org/security/advisories/mfsa2017-17/https://www.mozilla.org/security/advisories/mfsa2017-16/https://www.mozilla.org/security/advisories/mfsa2017-15/https://bugzilla.mozilla.org/show_bug.cgi?id=1360309http://www.securitytracker.com/id/1038689http://www.securityfocus.com/bid/99057https://nvd.nist.govhttps://www.mozilla.org/en-US/security/advisories/mfsa2017-16/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook