CVE-2008-5510
CVE-2008-5510
The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.
Productos afectados
n/a · n/a¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://bugzilla.mozilla.org/show_bug.cgi?id=228856http://secunia.com/advisories/33184http://secunia.com/advisories/33188http://secunia.com/advisories/33203http://secunia.com/advisories/33204http://secunia.com/advisories/33205http://secunia.com/advisories/33216http://secunia.com/advisories/33231http://secunia.com/advisories/33408http://secunia.com/advisories/33523http://secunia.com/advisories/34501http://secunia.com/advisories/35080