Mozilla Seamonkey : Security vulnerabilities, CVEs published in April 2007

CVE-2007-2292

CRLF injection vulnerability in the Digest Authentication support for Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allows remote attackers to conduct HTTP request splitting attacks via LF (%0a) bytes in the username attribute.

Max CVSS

4.3

EPSS Score

7.25%

Published

2007-04-26

Updated

2021-07-23

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Mozilla » Seamonkey : Security Vulnerabilities, CVEs, Published In April 2007

CVE-2007-2292