Lucene search
Mozilla FoundationMFSA2008-13HistoryMar 25, 2008 - 12:00 a.m.
Multiple XSS vulnerabilities from character encoding — Mozilla
2008-03-2500:00:00
Mozilla Foundation
www.mozilla.org
13
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.1%
WebKit developer Alexey Proskuryakov reported that the Mozilla HTML parser treated the backspace character as whitespace contrary to the HTML specification and different from other browsers. This difference might lead to Cross-site Scripting (XSS) risks on sites which filtered input in accordance with the specification.
Related
seebug
seebug
Mozilla Firefox字符编码跨站脚本漏洞
2008-05-23 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2008-13
2008-03-26 00:00:00
Mozilla Firefox / Seamonkey multiple security vulnerabilities
2008-03-28 00:00:00
prion
prion
Cross site scripting
2008-02-12 03:00:00
ubuntucve
ubuntucve
CVE-2008-0416
2008-02-12 00:00:00
cve
cve
CVE-2008-0416
2008-02-12 03:00:00
nessus
nessus
Mozilla Thunderbird < 2.0.0.12 Multiple Vulnerabilities
2008-02-27 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : firefox vulnerabilities (USN-592-1)
2008-03-28 00:00:00
Oracle Linux 4 / 5 : firefox (ELSA-2008-0103)
2013-07-12 00:00:00
openvas
openvas
Ubuntu Update for firefox vulnerabilities USN-592-1
2009-03-23 00:00:00
Oracle Linux Local Check: ELSA-2008-0103
2015-10-08 00:00:00
Mozilla Firefox, Thunderbird, Seamonkey. Several vulnerabilitys (Windows)
2008-06-17 00:00:00
oraclelinux
oraclelinux
Critical: firefox security update
2008-02-08 00:00:00
Critical: seamonkey security update
2008-02-08 00:00:00
redhat
redhat
(RHSA-2008:0103) Critical: firefox security update
2008-02-07 00:00:00
(RHSA-2008:0104) Critical: seamonkey security update
2008-02-07 00:00:00
centos
centos
firefox security update
2008-02-08 19:18:05
seamonkey security update
2008-02-11 00:20:26
seamonkey security update
2008-02-08 19:04:30
ubuntu
ubuntu
Firefox vulnerabilities
2008-03-26 00:00:00
Firefox vulnerabilities
2008-02-08 00:00:00
debian
debian
[SECURITY] [DSA 1484-1] New xulrunner packages fix several vulnerabilities
2008-02-10 20:23:48
[SECURITY] [DSA 1485-1] New icedove packages fix several vulnerabilities
2008-02-10 20:39:19
[SECURITY] [DSA 1485-2] New icedove packages fix regression
2008-03-17 20:39:07
osv
osv
iceweasel - several vulnerabilities
2008-02-10 00:00:00
xulrunner - several vulnerabilities
2008-02-10 00:00:00
iceape - several vulnerabilities
2008-02-24 00:00:00
gentoo
gentoo
Mozilla products: Multiple vulnerabilities
2008-05-20 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.1%
Related for MFSA2008-13