CVE-2007-2292

Priority
Description
CRLF injection vulnerability in the Digest Authentication support for
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allows remote
attackers to conduct HTTP request splitting attacks via LF (%0a) bytes in
the username attribute.
Package
Upstream:released (2.0.0.8)
Package
Upstream:needs-triage
Package
Upstream:released (2.0.0.8)
More Information

Updated: 2019-03-19 11:42:14 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)