|Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does
not properly verify the associated types of DOM node names within the
context of their namespaces, which allows remote attackers to modify
certain tag properties, possibly leading to execution of arbitrary
script or code, as demonstrated using an XHTML document with IMG tags
with custom properties ("XHTML node spoofing").