<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
                                        
                                        
                                        <font size="2" face="Tahoma" color="#000000 ">I can't find an explanation of the actual vulnerability. The supposed explanation is a 403: http://tetraph.com/covert_redirect/<br></font><div class="mb_sig"></div><div><div class="mb_sig"></div></div><blockquote class="history_container" type="cite" style="border-left-style:solid;border-width:1px; margin-top:20px; margin-left:0px;padding-left:10px;">
                                       <p style="color: #AAAAAA; margin-top: 10px;">On 5/2/2014 7:59:10 AM, Shane Tomlinson <stomlinson@mozilla.com>wrote:</p>Is our OAuth implementation susceptible?
<br>
<br>http://www.cnet.com/uk/news/serious-security-flaw-in-oauth-and-openid-discovered/
<br>_______________________________________________
<br>Dev-fxacct mailing list
<br>Dev-fxacct@mozilla.org
<br>https://mail.mozilla.org/listinfo/dev-fxacct
<br>
                                       </blockquote>