The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2008-12-17T23:00:00
Updated: 2018-10-03T20:57:01
Reserved: 2008-12-12T00:00:00
Link: CVE-2008-5510
JSON object: View
NVD Information
Status : Analyzed
Published: 2008-12-17T23:30:00.627
Modified: 2018-11-08T20:12:31.107
Link: CVE-2008-5510
JSON object: View
Redhat Information
No data.
CWE