描述
If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.
AI分析AI驱动
受影响产品
mozillafirefox
mozillafirefox_esr
mozillathunderbird
参考资料
- https://bugzilla.mozilla.org/show_bug.cgi?id=1795815Issue TrackingPermissions RequiredVendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-47/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-48/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-49/Vendor Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1795815Issue TrackingPermissions RequiredVendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-47/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-48/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-49/Vendor Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1795815Issue TrackingPermissions RequiredVendor Advisory