New Search

Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19 Thunderbird 2.x before 2.0.0.19 and SeaMonkey 1.x before 1.1.14 does not properly parse URLs with leading whitespace or control characters which might allow remote attackers to misrepresent URLs and simplify phishing attacks.

oval:org.mitre.oval:def:11040

Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19 Thunderbird 2.x before 2.0.0.19 and SeaMonkey 1.x before 1.1.14 does not properly parse URLs with leading whitespace or control characters which might allow remote attackers to misrepresent URLs and simplify phishing attacks.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 4
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 4
  • CentOS Linux 5
  • CentOS Linux 3
  • Oracle Linux 4
  • Oracle Linux 5
  • Red Hat Enterprise Linux 3
Class:
vulnerability
Reference(s):
  • CVE-2008-5508
Product(s):