select element persistence allows for attacks — Mozilla

Security researcher David Bloom of Cue discovered that elements are always-on-top chromeless windows and that navigation away from a page with an active menu does not remove this window.When another menu is opened programmatically on a new page, the original menu can be retained and arbitrary HTM...

FreeBSD : piwik -- xss and click-jacking issues (da317bc9-59a6-11e1-bc16-0023ae8e59f0)

The Piwik Team reports : We would like to thank the following security researchers for their responsible disclosure of XSS and click-jacking issues : Piotr Duszynski, Sergey Markov, Mauro Gentile. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

piwik -- xss and click-jacking issues

The Piwik Team reports: We would like to thank the following security researchers for their responsible disclosure of XSS and click-jacking issues: Piotr Duszynski, Sergey Markov, Mauro Gentile...

Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux)

This host is installed with Adobe Flash Player/Air and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeprdtsmultdosvulnaug10lin.nasl 6476 2017-06-29 07:32:00Z cfischer $ Adobe Flash Player/Air Multiple Vulnerabilities - August10 Linux Authors: Sooraj KS Copyright:...

Adobe Flash Player/Air Multiple Vulnerabilities (Aug 2010) - Windows

Adobe Flash Player/Air is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Windows)

This host is installed with Adobe Flash Player/Air and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeprdtsmultdosvulnaug10win.nasl 6475 2017-06-29 06:35:11Z cfischer $ Adobe Flash Player/Air Multiple Vulnerabilities - August10 Windows Authors: Sooraj KS Copyright:...

SuSE Update for flash-player SUSE-SA:2010:034

Check for the Version of flash-player OpenVAS Vulnerability Test SuSE Update for flash-player SUSE-SA:2010:034 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Adobe Flash Player/Air Multiple Vulnerabilities (Aug 2010) - Linux

Adobe Flash Player/Air is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE Update for flash-player SUSE-SA:2010:034

Check for the Version of flash-player OpenVAS Vulnerability Test SuSE Update for flash-player SUSE-SA:2010:034 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

flash-plugin: multiple security flaws (APSB10-16)

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into 1 selecting a link or 2 completing a dialog, related to a "click-jacking" issue...

flash-plugin: multiple security flaws (APSB10-16)

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into 1 selecting a link or 2 completing a dialog, related to a "click-jacking" issue...

CVE-2010-2215

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into 1 selecting a link or 2 completing a dialog, related to a "click-jacking" issue...

Design/Logic Flaw

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into 1 selecting a link or 2 completing a dialog, related to a "click-jacking" issue...

CVE-2010-2215

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into 1 selecting a link or 2 completing a dialog, related to a "click-jacking" issue...

CVE-2010-2215

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into 1 selecting a link or 2 completing a dialog, related to a "click-jacking" issue...

CVE-2010-2215

CVE-2010-2215 is a click‑jacking vulnerability in Adobe Flash Player (and bundled Flash in AIR). The connected advisories/entries confirm the issue can trick a user into clicking a link or dialog, with remediation by upgrading Flash to fixed versions (for example, Flash Player 9.0.280.0 and relat...

Adobe Plugs Critical Holes in Flash Player

Adobe’s ubiquitous Flash Player software is vulnerable to at least six critical security vulnerabilities that could allow hackers to launch remote code execution attacks, the company warned in an advisory. The flaws affect Adobe Flash Player 10.1.53.64 and earlier versions for Windows, Macintosh,...

Adobe AIR < 2.0.3 Multiple Vulnerabilities (APSB10-16)

The remote Windows host contains a version of Adobe AIR that is earlier than 2.0.3. Such versions are affected by multiple memory corruption issues and a click-jacking vulnerability. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Flash Player < 9.0.280 / 10.1.82.76 Multiple Vulnerabilities (APSB10-16)

The remote Windows host contains a version of Adobe Flash Player 9.x before 9.0.280 or 10.x before 10.1.82.76. Such versions are affected by multiple memory corruption issues and a click-jacking vulnerability. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...