SecuritySpace - CVE-2018-5115

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-5115

Description: If an HTTP authentication prompt is triggered by a background network request from a page or extension, it is displayed over the currently loaded foreground page. Although the prompt contains the real domain making the request, this can result in user confusion about the originating site of the authentication request and may cause users to mistakenly send private credential information to a third party site. This vulnerability affects Firefox < 58.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-5115
BugTraq ID: 102786
http://www.securityfocus.com/bid/102786
http://www.securitytracker.com/id/1040270
https://usn.ubuntu.com/3544-1/

CVE ID:	CVE-2018-5115
Description:	If an HTTP authentication prompt is triggered by a background network request from a page or extension, it is displayed over the currently loaded foreground page. Although the prompt contains the real domain making the request, this can result in user confusion about the originating site of the authentication request and may cause users to mistakenly send private credential information to a third party site. This vulnerability affects Firefox < 58.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-5115 BugTraq ID: 102786 http://www.securityfocus.com/bid/102786 http://www.securitytracker.com/id/1040270 https://usn.ubuntu.com/3544-1/