Home > Vulnerability Database > CVE-2008-5510

Mend.io Vulnerability Database

CVE-2008-5510

Date: December 17, 2008

The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the '\0' escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.

Severity Score

9.3

Related Resources (32)

Url: http://www.ubuntu.com/usn/usn-690-2

Url: https://usn.ubuntu.com/690-1/

Url: http://secunia.com/advisories/33188

Url: http://secunia.com/advisories/33523

Url: https://bugzilla.mozilla.org/show_bug.cgi?id=228856

Url: http://secunia.com/advisories/33184

Url: http://www.mozilla.org/security/announce/2008/mfsa2008-67.html

Url: http://www.redhat.com/support/errata/RHSA-2008-1036.html

Url: http://secunia.com/advisories/33205

Url: http://secunia.com/advisories/33204

Url: http://secunia.com/advisories/33203

Url: http://www.securityfocus.com/bid/32882

Url: http://secunia.com/advisories/33408

Url: http://www.vupen.com/english/advisories/2009/0977

Url: http://www.securitytracker.com/id?1021425

Url: http://www.ubuntu.com/usn/usn-701-1

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2008-5510

Url: http://secunia.com/advisories/34501

Url: https://access.redhat.com/security/cve/CVE-2008-5510

Url: http://secunia.com/advisories/33231

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-258748-1

Url: http://www.debian.org/security/2009/dsa-1707

Url: http://secunia.com/advisories/33216

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/47415

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9662

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2008:244

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2008:245

Url: http://secunia.com/advisories/35080

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1

Url: https://nvd.nist.gov/vuln/detail/CVE-2008-5510

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2009:012

Url: https://www.mend.io/vulnerability-database/CVE-2008-5510

Severity Score

9.3

CVSS v3

Base Score:	9.3
Attack Vector (AV):
Attack Complexity (AC):
Privileges Required (PR):
User Interaction (UI):
Scope (S):
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE

CVSS v2

Base Score:	9.8
Access Vector (AV):
Access Complexity (AC):
Authentication (AU):
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2008-5510

Date: December 17, 2008

Severity Score

Related Resources (32)

Severity Score

CVSS v3

CVSS v2

Do you need more information?