3641 matches found
CVE-2005-2268
Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
CVE-2005-2274
The connected sources confirm CVE-2005-2274 affects Microsoft Internet Explorer 6.0 and describes a dialog-origin spoofing vulnerability where a JavaScript dialog box may not be clearly tied to the page that generated it, enabling an attacker to impersonate a trusted site and facilitate phishing....
CVE-2005-2272
CVE-2005-2272 affects Safari 2.0 (412). The vulnerability stems from the dialog origin not being clearly associated with the generating web page, enabling remote attackers to spoof a dialog box from a trusted site and facilitate phishing. The available connected records confirm the issue and its ...
CVE-2005-2271
CVE-2005-2271 affects iCab 2.9.8: a vulnerability where the browser does not clearly associate a Javascript dialog box with the page that generated it, enabling remote attackers to spoof a dialog box from a trusted site and facilitate phishing (Dialog Origin Spoofing). The underlying issue is the...
CVE-2005-2268
CVE-2005-2268 affects Firefox up to 1.0.4 and Mozilla up to 1.7.8 (before 1.0.5/1.7.9) where Javascript dialogs were not clearly tied to the originating web page, enabling spoofing of dialog boxes from trusted sites and facilitating phishing attacks. The issue arises from the dialog origin not be...
CVE-2005-2273
Opera 7.x and 8 before 8.01 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
CVE-2005-2274
Microsoft Internet Explorer 6.0 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
CVE-2005-2274
Microsoft Internet Explorer 6.0 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
CVE-2005-2268
Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
CVE-2005-2273
Opera 7.x and 8 before 8.01 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
CVE-2005-2272
Safari version 2.0 412 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...
Mozilla Firefox 1.0.4 - 'Set As Wallpaper' Code Execution
// Exploit by Michael Krax Firewalling - Proof-of-Concept function stopload // in some cases the javascript url never stops to load // therefore we force a stop after the real image got loaded window.setTimeout"window.stop",1000; Firewalling - Proof-of-Concept The "Set As Wallpaper" dialog takes...
CVE-2005-1797
The design of Advanced Encryption Standard AES, aka Rijndael, allows remote attackers to recover AES keys via timing attacks on S-box lookups, which are difficult to perform in constant time in AES implementations...
CVE-2005-1797
The design of Advanced Encryption Standard AES, aka Rijndael, allows remote attackers to recover AES keys via timing attacks on S-box lookups, which are difficult to perform in constant time in AES implementations...
security flaw
Firefox before 1.0 and Mozilla before 1.7.5 allows inactive background tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoofing Vulnerability."...
phpWebLog <= 0.5.3 Arbitrary File Inclusion
Exploit for unknown platform in category web applications =========================================== phpWebLog = 0.5.3 Arbitrary File Inclusion =========================================== Example: if registerglobals=on and allowurlfopen=on:...
CVE-2004-1380
The CVE-2004-1380 issue affects Firefox <1.0 and Mozilla
CVE-2004-0922
AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop Box...
CVE-2004-1122
Safari 1.x to 1.2.4, and possibly other versions, allows inactive windows to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows, aka the "Dialog Box Spoofing Vulnerability," a different vulnerability than CVE-2004-1314...
Opera < 7.54u1 Download Box Spoofing
Binary data 2467.prm...