99 matches found
CVE-2017-2829
Summary (CVE-2017-2829) : Cisco Talos and security trackers document a directory traversal vulnerability in the Foscam C1 Indoor HD Camera’s web management interface via the CGIProxy.fcgi service. An unauthenticated or authenticated user can craft a request that triggers the 0x3001 “Message” path...
openSUSE Security Update : MozillaFirefox / mozilla-nss (openSUSE-2016-714)
This update to Mozilla Firefox 47 fixes the following issues boo983549 : Security fixes : - CVE-2016-2815/CVE-2016-2818: Miscellaneous memory safety hazards boo983638 MFSA 2016-49 - CVE-2016-2819: Buffer overflow parsing HTML5 fragments boo983655 MFSA 2016-50 - CVE-2016-2821: Use-after-free...
CVE-2016-2829
Mozilla Firefox before 47.0 allows remote attackers to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or the geolocation permission...
CVE-2016-2829
Mozilla Firefox before 47.0 allows remote attackers to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or the geolocation permission...
CVE-2016-2829
CVE-2016-2829 affects Mozilla Firefox prior to 47.0. A crafted website that rapidly triggers multiple permission requests (e.g., microphone or geolocation) can cause the notification icon to be incorrect, enabling spoofing of permission prompts. This could mislead users into granting access to re...
CVE-2016-2829
Mozilla Firefox before 47.0 allows remote attackers to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or the geolocation permission...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2016:1557-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2016:1552-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for MozillaFirefox, mozilla-nss (important)
This update to Mozilla Firefox 47 fixes the following issues boo983549: Security fixes: - CVE-2016-2815/CVE-2016-2818: Miscellaneous memory safety hazards boo983638 MFSA 2016-49 - CVE-2016-2819: Buffer overflow parsing HTML5 fragments boo983655 MFSA 2016-50 - CVE-2016-2821: Use-after-free deletin...
CVE-2016-2829
Mozilla Firefox before 47.0 allows remote attackers to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or the geolocation permission...
Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2829-2)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2829-2 advisory. It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local...
Ubuntu: Security Advisory (USN-2829-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-2829
Citrix NetScaler Application Delivery Controller ADC and NetScaler Gateway before 10.5 Build 53.9 through 55.8 and 10.5.e Build 53-9010.e allow remote attackers to cause a denial of service reboot via unspecified vectors...
CVE-2015-2829
CVE-2015-2829 affects Citrix NetScaler ADC and NetScaler Gateway before 10.5 Build 53.9–55.8 and 10.5.e Build 53-9010.e, allowing a remote attacker to trigger a denial of service (reboot) via unspecified vectors. Connected sources confirm the affected product family and impact but do not provide ...
openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0813-1)
Update Chromium to 22.0.1190 - Security Fixes bnc769181 : - CVE-2012-2815: Leak of iframe fragment id - CVE-2012-2816: Prevent sandboxed processes interfering with each other - CVE-2012-2817: Use-after-free in table section handling - CVE-2012-2818: Use-after-free in counter layout -...
CVE-2014-2829
CVE-2014-2829 affects Erlang Solutions MongooseIM up to 1.3.1 rev. 2. The vulnerability arises because compressed XML elements are not properly restricted during XMPP stream processing, enabling a remote attacker to cause a denial of service via a crafted xmppbomb-like stream. The impact is resou...
CVE-2013-2829
The CVE-2013-2829 entry concerns MatrikonOPC SCADA DNP3 OPC Server, affected in Version 1.2.2.0 and earlier. The root cause is improper input validation (CWE-20) that may allow a remote attacker to trigger a denial-of-service condition by processing a malformed DNP3 packet, causing the server to ...
Debian DSA-2829-1 : hplip - several vulnerabilities
Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
Apple Safari Multiple Vulnerabilities - Oct 2012 (Mac OS X)
This host is installed with Apple Safari web browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbapplesafarimultvulnoct12macosx.nasl 6018 2017-04-24 09:02:24Z teissa $ Apple Safari Multiple Vulnerabilities - Oct 2012 Mac OS X Authors: Rachana Shetty Copyright:...
APPLE-SA-2012-09-19-3 Safari 6.0.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-09-19-3 Safari 6.0.1 Safari 6.0.1 is now available and addresses the following: Safari Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8 and v10.8.1 Impact: Opening a maliciously crafted downloaded HTML...