Vulnerability & Exploit Database

Back to search

MFSA2007-02 SeaMonkey: Improvements to help protect against Cross-Site Scripting attacks (CVE-2007-0996)

Severity CVSS Published Added Modified
6 (AV:N/AC:M/Au:N/C:P/I:P/A:N) February 26, 2007 February 03, 2012 May 27, 2016


The child frames in Mozilla Firefox before and 2.x before, and SeaMonkey before 1.0.8 inherit the default charset from the parent window, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated using the UTF-7 character set.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial




Related Vulnerabilities