CVE-2008-5023

2008-11-13T11:30:00
ID CVE-2008-5023
Type cve
Reporter cve@mitre.org
Modified 2018-11-02T13:49:00

Description

Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS property in a signed JAR file.