QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-0169

Back to search

CVE-2010-0169

Published: Mar 25, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to the XUL cache, which might allow remote attackers to modify the browser's font and other CSS attributes, and potentially disrupt rendering of a web page, by forcing the browser to perform this erroneous stylesheet caching.

VendorProductVersions

n/a

n/a

affected
n/a

References

38918
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:11391
vdb-entry
signature
x_refsource_OVAL
ADV-2010-0692
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:8431
vdb-entry
signature
x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now