← back
CVE-2008-5510

CVE-2008-5510

EPSS 2.2%
The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.mozilla.org/show_bug.cgi?id=228856http://secunia.com/advisories/33184http://secunia.com/advisories/33188http://secunia.com/advisories/33203http://secunia.com/advisories/33204http://secunia.com/advisories/33205http://secunia.com/advisories/33216http://secunia.com/advisories/33231http://secunia.com/advisories/33408http://secunia.com/advisories/33523http://secunia.com/advisories/34501http://secunia.com/advisories/35080