107 matches found
Mozilla Thunderbird Security Advisories (MFSA2017-03, MFSA2017-03) - Windows
Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...
Mozilla Firefox ESR Security Advisories (MFSA2017-01, MFSA2017-02) - Windows
Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...
firefox security update
CentOS Errata and Security Advisory CESA-2017:0190 An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability...
RedHat Update for firefox RHSA-2017:0190-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-3771-1 : firefox-esr - security update
Multiple security issues have been found in the Mozilla Firefox web browser: Memory safety errors, use-after-frees and other implementation errors may lead to the execution of arbitrary code, information disclosure or privilege escalation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (20170125)
This update upgrades Firefox to version 45.7.0 ESR. Security Fixes : - Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox...
RHEL 5 / 6 / 7 : firefox (RHSA-2017:0190)
An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
[SECURITY] [DSA 3771-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3771-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 25, 2017 https://www.debian.org/security/faq -...
CVE-2017-5378
Hashed codes of JavaScript objects are shared between pages. This allows for pointer leaks because an object's address can be discovered through hash codes, and also allows for data leakage of an object's content using these hash codes. This vulnerability affects Thunderbird 45.7, Firefox ESR 45....
Serva 3.0.0 - HTTP Server Denial of Service
!/usr/bin/env python Serva 3.0.0 HTTP Server Module Remote Denial of Service Exploit Vendor: Patrick Masotta Product web page: http://www.vercot.com Affected version: 3.0.0.1001 Community, Pro, 32/64bit Summary: Serva is a light 3 MB, yet powerful Microsoft Windows application. It was conceived...
IBM WebSphere Portal Unspecified Reflected XSS
The version of WebSphere Portal on the remote host is affected by a reflected cross-site scripting vulnerability. An attacker can exploit this to execute arbitrary script code in the context of a user's browser. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'...
CVE-2013-5378
IBM WebSphere Portal 8.x up to version before 8.0.0.1 CF8 is affected by a cross-site scripting (XSS) vulnerability. The issue arises from incorrect IBM Connections integration, allowing remote authenticated users to inject arbitrary script/HTML. No remediation details are provided in the supplie...
CVE-2012-5378
creationtimestamp| type| source ---|---|--- 2013-09-06 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/28130...
Oracle Linux 4 : tk (ELSA-2008-0135)
From Red Hat Security Advisory 2008:0135 : Updated tk packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Updated 22 February 2008 The packages in this errata were...
Oracle Linux 3 : tcltk (ELSA-2008-0134)
From Red Hat Security Advisory 2008:0134 : Updated tcltk packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tcl is a scripting language designed for...
Oracle Linux 5 : Moderate: / tk (ELSA-2008-0136)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0136 advisory. 8.4.13-5.EL51.1 - CVE-2008-0553 CVE-2007-5378 - GIF overflow and also GIF overflow Resolves: rhbz432514 Tenable has extracted the preceding description...
CVE-2012-5378
CVE-2012-5378 is an untrusted search path vulnerability in the installation functionality of ActiveTcl 8.5.12 when installed in the top-level C:\ directory. A Trojan horse DLL placed in the installation path (C:\TD\bin), which is added to the PATH, can be loaded by the system service using the IK...
Scientific Linux Security Update : tk on SL4.x, SL5.x i386/x86_64
An input validation flaw was discovered in Tk's GIF image handling. A code-size value read from a GIF image was not properly validated before being used, leading to a buffer overflow. A specially crafted GIF file could use this to cause a crash or, potentially, execute code with the privileges of...
Debian Security Advisory DSA 1743-1 (libtk-img)
The remote host is missing an update to libtk-img announced via advisory DSA 1743-1. OpenVAS Vulnerability Test $Id: deb17431.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1743-1 libtk-img Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Ubuntu USN-736-1 (gst-plugins-good0.10)
The remote host is missing an update to gst-plugins-good0.10 announced via advisory USN-736-1. OpenVAS Vulnerability Test $Id: ubuntu7361.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7361.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-736-1...