Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / (slash) characters in the URL.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | 2.0.0.2 | 2.0.0.2 |
Firefox | Mozilla | 2.0.0.3 | 2.0.0.3 |
Firefox | Mozilla | 2.0.0.1 | 2.0.0.1 |