CVE-2008-5510

Priority
Medium
Description
The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19,
Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores
the '\0' escaped null character, which might allow remote attackers to
bypass protection mechanisms such as sanitization routines.
References
Package
Upstream:released (3.0.5)
Package
Upstream:needs-triage
Package
Upstream:released (2.0.0.19)
Package
Upstream:released (1.1.14)
Package
Upstream:released (1.1.14)
Package
Upstream:released (2.0.0.19)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:34:27 UTC (commit 9756)