CVE-2008-4065 (retired)

Priority
Description
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before
2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to bypass
cross-site scripting (XSS) protection mechanisms and conduct XSS attacks
via byte order mark (BOM) characters that are removed from JavaScript code
before execution, aka "Stripped BOM characters bug."
Package
Upstream:released (2.0.0.17)
Package
Upstream:released (3.0.3)
Package
Upstream:needs-triage
Package
Priority: Low
Upstream:needs-triage
Package
Upstream:released (1.1.12)
Package
Priority: Low
Upstream:released (2.0.0.17)
Package
Upstream:needs-triage
Package
Upstream:released (1.9.0.3)
More Information

Updated: 2019-08-23 08:34:01 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)