Public Date:
464168: CVE-2008-1036 ICU: Invalid character sequences omission during conversion of some character encodings (XSS attack possible)

The MITRE CVE dictionary describes this issue as:

The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

Find out more about CVE-2008-1036 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux version 5 (icu) RHSA-2009:0296 2009-03-12