CVE-2007-0996

Priority
Description
The child frames in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2,
and SeaMonkey before 1.0.8 inherit the default charset from the parent
window, which allows remote attackers to conduct cross-site scripting (XSS)
attacks, as demonstrated using the UTF-7 character set.
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-19 11:41:28 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)