Visual truncation vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, allows remote attackers to trigger a vertical scroll and spoof URLs via unspecified Unicode characters with a tall line-height property.Referenceshttp://www.debian.org/security/2009/dsa-1885http://www.securityfocus.com/bid/36343http://www.novell.com/linux/security/advisories/2009_48_firefox.htmlhttp://www.redhat.com/support/errata/RHSA-2009-1430.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=453827https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5418http://secunia.com/advisories/36692http://secunia.com/advisories/36670http://secunia.com/advisories/36671http://www.mozilla.org/security/announce/2009/mfsa2009-50.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10871http://secunia.com/advisories/37098http://www.securitytracker.com/id?1022875
