CVE-2009-5017
CVSS v2.0
4.3 (Medium)
EPSS
0.15 % (52th)
Affected Products
1
Advisories
1
Mozilla Firefox before 3.6 Beta 3 does not properly handle overlong UTF-8 encoding, which makes it easier for remote attackers to bypass cross-site scripting (XSS) protection mechanisms via a crafted string, a different vulnerability than CVE-2010-1210.
Weaknesses
- CWE-79
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Related CVEs
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2010-11-12 22:00:01
(14 years ago) - Updated Date
-
2010-12-01 05:00:00
(13 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...