CVE-2007-2292 (retired)

Priority
Description
CRLF injection vulnerability in the Digest Authentication support for
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allows remote
attackers to conduct HTTP request splitting attacks via LF (%0a) bytes in
the username attribute.
Package
Upstream:released (2.0.0.8)
Package
Upstream:needs-triage
Package
Upstream:released (2.0.0.8)
More Information

Updated: 2019-03-26 11:40:09 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)