CVE-2017-5458 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Cross-site scripting
Description	An issue has been found in Firefox < 53. When a javascript: URL is drag and dropped by a user into the addressbar, the URL will be processed and executed. This allows for users to be socially engineered to execute an XSS attack on themselves.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-249	firefox	52.0.2-1	53.0-1	Critical	Fixed

Date	Advisory	Group	Package	Severity	Type
21 Apr 2017	ASA-201704-6	AVG-249	firefox	Critical	multiple issues

References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-10/#CVE-2017-5458 https://bugzilla.mozilla.org/show_bug.cgi?id=1229426