CVE-2008-5508

Publication date 17 December 2008

Last updated 24 July 2024

Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not properly parse URLs with leading whitespace or control characters, which might allow remote attackers to misrepresent URLs and simplify phishing attacks.

Status

Show unmaintained releases

Package	Ubuntu Release	Status

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-690-1
Firefox and xulrunner vulnerabilities
17 December 2008

USN-690-2
Firefox vulnerabilities
18 December 2008

USN-701-1
Thunderbird vulnerabilities
6 January 2009

USN-701-2
Thunderbird vulnerabilities
6 January 2009

Other references

https://www.cve.org/CVERecord?id=CVE-2008-5508