Escaped null characters ignored by CSS parser
- December 16, 2008
- Kojima Hajime
- Firefox, SeaMonkey, Thunderbird
- Fixed in
- Firefox 220.127.116.11
- Firefox 3.0.5
- SeaMonkey 1.1.14
- Thunderbird 18.104.22.168
Kojima Hajime reported that unlike literal null
characters which were handled correctly, the escaped form '
was ignored by the CSS parser and treated as if it was not present in
the CSS input string. This issue could potentially be used to bypass
script sanitization routines in web applications. The severity of
this issue was determined to be low.