CVE-2008-5510

CVE-2008-5510 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.