142 matches found
CVE-2016-3984
The McAfee VirusScan Console mcconsol.exe in McAfee Active Response MAR before 1.1.0.161, Agent MA 5.x before 5.0.2 Hotfix 1110392 5.0.2.333, Data Exchange Layer 2.x DXL before 2.0.1.140.1, Data Loss Prevention Endpoint DLPe 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control MDC 9.3...
CVE-2014-3984
CVE-2014-3984 affects Libav up to version 0.8.12. The primary issue is multiple unspecified vulnerabilities in Libav that allow remote attackers to trigger impact and vectors that are not detailed in the core CVE description. Public advisories connected to this CVE (Ubuntu USN-2244-1) describe th...
Design/Logic Flaw
The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, a different...
CVE-2013-3984
Technical details for CVE-2013-3984 are not publicly provided in the connected documents. The materials reference related issues (e.g., CVE-2014-3867) but do not disclose affected components, versions, or remediation for this CVE. Monitor for updates.
PHPAuction view.inc.php phpAds_path Parameter PHP Code Execution - Ver2 (CVE-2006-3984)
A code execution vulnerability has been reported in Albasoftware PHPauction. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle Linux 3 / 4 : seamonkey (ELSA-2009-1673)
From Red Hat Security Advisory 2009:1673 : Updated SeaMonkey packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. SeaMonkey is an open source Web...
Mozilla Thunderbird Multiple Vulnerabilities (Oct 2012) - Windows
Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.2 Security Update : Mozilla Firefox (SAT Patch Number 6951)
Mozilla Firefox was updated to the 10.0.9ESR security release which fixes bugs and security issues : - Security researchers Thai Duong and Juliano Rizzo reported that SPDY's request header compression leads to information leakage, which can allow the extraction of private data such as session...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2012:1345-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MozillaFirefox: update to Firefox 16.0.1 (important)
The Mozilla suite received following security updates bnc783533: Mozilla Firefox was updated to 16.0.1. Mozilla Seamonkey was updated to 2.13.1. Mozilla Thunderbird was updated to 16.0.1. Mozilla XULRunner was updated to 16.0.1. MFSA 2012-88/CVE-2012-4191 bmo798045 Miscellaneous memory safety...
Mozilla Firefox Multiple Vulnerabilities - Oct 12 (Windows)
The host is installed with Mozilla Firefox and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaprdtsmultvulnoct12win.nasl 5931 2017-04-11 09:02:04Z teissa $ Mozilla Firefox Multiple Vulnerabilities - Oct 12 Windows Authors: Madhuri D Copyright: Copyright c 2012...
CVE-2012-5354
Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has multiple menus of SELECT elements active, which allows remote attackers to conduct clickjacking attacks via vectors involving an XPI file, the window.ope...
CVE-2012-3984
CVE-2012-3984 affects Mozilla Firefox (<16.0), Mozilla Thunderbird (<16.0), and SeaMonkey (
CVE-2012-3984
Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote attackers to spoof page content via vectors involving absolute positioning and scrolling...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via 1 an e-mail address field or 2 a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984...
CVE-2011-3984
CVE-2011-3984 is an XSS vulnerability in KENT-WEB WEB FORUM (versions 5.1 and earlier) that can be triggered via web form entries to inject arbitrary script/HTML. Public details indicate remote injection possibilities, with related entries noting multiple XSS issues in the same product. Remediati...
CentOS Update for firefox CESA-2009:1674 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2010-3984
CVE-2010-3984 is a buffer overflow flaw in CA XOsoft/ARCserve components (mng_core_com.dll) exploited via crafted create_session_bab SOAP requests to xosoapapi.asmx. Affected products include XOsoft Replication (r12.0 SP1, r12.5 SP2 rollups), XOsoft High Availability (r12.0 SP1, r12.5 SP2 rollups...
CA20101209-01: Security Notice for CA XOsoft
-----BEGIN PGP SIGNED MESSAGE----- CA20101209-01: Security Notice for CA XOsoft Issued: December 9, 2010 CA Technologies support is alerting customers to a security risk with CA XOsoft. A vulnerability exists that can allow a remote attacker to execute arbitrary code. CA has issued a patch to...
IPSwitch IMail LDAP Daemon/Service - Remote Buffer Overflow (Metasploit)
$Id: imailthc.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...