CVE-2008-0593

Priority
Description
Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and
SeaMonkey before 1.1.8, modify the .href property of stylesheet DOM nodes
to the final URI of a 302 redirect, which might allow remote attackers to
bypass the Same Origin Policy and read sensitive information from the
original URL, such as with Single-Signon systems.
Notes
Package
Upstream:released (2.0.0.12)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:not-affected (1.1.8)
Package
Upstream:released (1.8.1.13)
More Information

Updated: 2020-01-29 19:30:44 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)