CVE-2018-5116

WebExtensions with the ActiveTab permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with this permission. This vulnerability affects Firefox < 58.

Weakness

The product does not properly verify that the source of data or communication is valid.

Affected Software

Related Attack Patterns

• https://cwe.mitre.org/data/definitions/111.html
• https://cwe.mitre.org/data/definitions/141.html
• https://cwe.mitre.org/data/definitions/142.html
• https://cwe.mitre.org/data/definitions/160.html
• https://cwe.mitre.org/data/definitions/21.html
• https://cwe.mitre.org/data/definitions/384.html
• https://cwe.mitre.org/data/definitions/385.html
• https://cwe.mitre.org/data/definitions/386.html
• https://cwe.mitre.org/data/definitions/387.html
• https://cwe.mitre.org/data/definitions/388.html
• https://cwe.mitre.org/data/definitions/510.html
• https://cwe.mitre.org/data/definitions/59.html
• https://cwe.mitre.org/data/definitions/60.html
• https://cwe.mitre.org/data/definitions/75.html
• https://cwe.mitre.org/data/definitions/76.html
• https://cwe.mitre.org/data/definitions/89.html

References

• http://www.securityfocus.com/bid/102786
• http://www.securitytracker.com/id/1040270
• https://bugzilla.mozilla.org/show_bug.cgi?id=1396399
• https://usn.ubuntu.com/3544-1/
• https://www.mozilla.org/security/advisories/mfsa2018-02/
• http://www.securityfocus.com/bid/102786
• http://www.securitytracker.com/id/1040270
• https://bugzilla.mozilla.org/show_bug.cgi?id=1396399
• https://usn.ubuntu.com/3544-1/
• https://www.mozilla.org/security/advisories/mfsa2018-02/