CVE-2008-5510

Publication date 17 December 2008

Last updated 24 July 2024

Ubuntu priority

The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.

Status

Show unmaintained releases

Package	Ubuntu Release	Status

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-717-3
Firefox vulnerabilities
11 February 2009

USN-690-1
Firefox and xulrunner vulnerabilities
17 December 2008

USN-690-2
Firefox vulnerabilities
18 December 2008

USN-701-1
Thunderbird vulnerabilities
6 January 2009

Other references

https://www.cve.org/CVERecord?id=CVE-2008-5510