One phishing tactic on the web is to provide a link with HTTP Auth. For example 'https://www.phishingtarget.com@evil.com'. To mitigate this type of attack, Firefox will display a warning dialog; however, this warning dialog would not have been displayed if evil.com used a redirect that was cached by the browser. This vulnerability affects Firefox < 86.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2021-02-26T01:54:22
Updated: 2024-08-03T19:14:09.988Z
Reserved: 2021-01-13T00:00:00
Link: CVE-2021-23972
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-02-26T02:15:13.180
Modified: 2022-05-23T19:08:14.180
Link: CVE-2021-23972
Redhat
No data.