QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-5510

Back to search

CVE-2008-5510

Published: Dec 17, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.

VendorProductVersions

n/a

n/a

affected
n/a

References

32882
vdb-entry
x_refsource_BID
1021425
vdb-entry
x_refsource_SECTRACK
33408
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:9662
vdb-entry
signature
x_refsource_OVAL
33205
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:1036
vendor-advisory
x_refsource_REDHAT
ADV-2009-0977
vdb-entry
x_refsource_VUPEN
USN-690-2
vendor-advisory
x_refsource_UBUNTU
USN-701-1
vendor-advisory
x_refsource_UBUNTU
33231
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:245
vendor-advisory
x_refsource_MANDRIVA
USN-690-1
vendor-advisory
x_refsource_UBUNTU
MDVSA-2009:012
vendor-advisory
x_refsource_MANDRIVA
33203
third-party-advisory
x_refsource_SECUNIA
DSA-1707
vendor-advisory
x_refsource_DEBIAN
33216
third-party-advisory
x_refsource_SECUNIA
256408
vendor-advisory
x_refsource_SUNALERT
33204
third-party-advisory
x_refsource_SECUNIA
33184
third-party-advisory
x_refsource_SECUNIA
258748
vendor-advisory
x_refsource_SUNALERT
MDVSA-2008:244
vendor-advisory
x_refsource_MANDRIVA
33188
third-party-advisory
x_refsource_SECUNIA
33523
third-party-advisory
x_refsource_SECUNIA
35080
third-party-advisory
x_refsource_SECUNIA
34501
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now