|Mozilla Firefox before 184.108.40.206 and 1.8.1.x before 220.127.116.11 does not
perform a security zone check when processing a wyciwyg URI, which
allows remote attackers to obtain sensitive information, poison the
browser cache, and possibly enable further attack vectors via (1) HTTP
302 redirect controls, (2) XMLHttpRequest, or (3) view-source URIs.