icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Mozilla < 0.9.7 Null Byte Cookie Disclosure

High

Synopsis

The remote host is using a vulnerable version of the Mozilla web browser.

Description

The remote host is using a version of the Mozilla web browser that may allow an attacker to steal the cookies of the users because of the way Mozilla handles null characters in its URLs.

Solution

Upgrade to Mozilla 0.9.7 or higher.