CVE-2008-0416 (retired)

Priority
Description
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox
before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8
allow remote attackers to inject arbitrary web script or HTML via certain
character encodings, including (1) a backspace character that is treated as
whitespace, (2) 0x80 with Shift_JIS encoding, and (3) "zero-length
non-ASCII sequences" in certain Asian character sets.
Package
Upstream:released (2.0.0.12)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:not-affected
Package
Upstream:released (1.8.1.13)
More Information

Updated: 2019-03-26 11:42:57 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)