Vulnerability identifier: #VU61103
Vulnerability risk: Medium
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to a logic error when processing iframes. If an attacker can control the contents of an iframe sandboxed with
allow-popups but not
Install updates from vendor's website.
Vulnerable software versions
Mozilla Firefox: 90.0 - 97.0.2
Firefox ESR: 91.0 - 91.6.1
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?