Published: 26/04/2019 Updated: 29/04/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

If the source for resources on a page is through an FTP connection in Firefox prior to 66.0, it is possible to trigger a series of modal alert messages for these resources through invalid credentials or locations. These messages cannot be immediately dismissed, allowing for a denial of service (DOS) attack.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox

Several security issues were fixed in Firefox ...

USN-3918-1 caused a regression in Firefox ...

Several security issues were fixed in Firefox ...

USN-3918-1 caused a regression in Firefox ...

Mozilla Foundation Security Advisory 2019-07 Security vulnerabilities fixed in Firefox 66 Announced March 19, 2019 Impact critical Products Firefox Fixed in Firefox 66 ...

If the source for resources on a page is through an FTP connection in Firefox before 660, it is possible to trigger a series of modal alert messages for these resources through invalid credentials or locations These messages cannot be immediately dismissed, allowing for a denial of service (DOS) attack ...

CWE-399 https://www.mozilla.org/security/advisories/mfsa2019-07/https://bugzilla.mozilla.org/show_bug.cgi?id=1523249 https://bugzilla.mozilla.org/show_bug.cgi?id=1282430 https://nvd.nist.gov https://usn.ubuntu.com/3918-1/https://security.archlinux.org/CVE-2019-9809

CVE-2019-9809

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect