cve/2015/CVE-2015-4476.md

CVE-2015-4476

Description

Mozilla Firefox before 41.0 on Android allows user-assisted remote attackers to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demonstrated by spoofing an SSL attribute.

POC

Reference

• http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Github

No PoCs found on GitHub currently.