CVE-2008-5510

Priority
Description
The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19,
Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores
the '\0' escaped null character, which might allow remote attackers to
bypass protection mechanisms such as sanitization routines.
Notes
Package
Upstream:released (2.0.0.19)
Package
Upstream:released (3.0.5)
Package
Upstream:released (1.1.14)
Package
Upstream:needs-triage
Package
Upstream:released (1.1.14)
Package
Upstream:released (2.0.0.19)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2020-01-29 19:34:04 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)