STIGQter STIGQter: STIG Summary: Mozilla Firefox Security Technical Implementation Guide Version: 5 Release: 1 Benchmark Date: 22 Jan 2021:

Firefox is configured to allow JavaScript to raise or lower windows.

DISA Rule

SV-223165r612236_rule

Vulnerability Number

V-223165

Group Title

SRG-APP-000141

Rule Version

DTBF182

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Ensure the preference "dom.disable_window_flip" is set and locked to the value of “true”.

Check Contents

In About:Config, verify that the preference name “dom.disable_window_flip" is set and locked to “true”.

Criteria: If the parameter is set incorrectly, then this is a finding. If the setting is not locked, then this is a finding.

Vulnerability Number

V-223165

Documentable

False

Rule Version

DTBF182

Severity Override Guidance

In About:Config, verify that the preference name “dom.disable_window_flip" is set and locked to “true”.

Criteria: If the parameter is set incorrectly, then this is a finding. If the setting is not locked, then this is a finding.

Check Content Reference

M

Target Key

4097

Comments