3797 matches found
Ubuntu 14.04 LTS : Firefox regression (USN-2880-2)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2880-2 advisory. USN-2880-1 fixed vulnerabilities in Firefox. This update introduced a regression which caused Firefox to crash on startup with some configurations. This update...
Mozilla Firefox Clickjacking Attack Vulnerability
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the file-download dialog box in versions of Mozilla Firefox prior to 44.0 on the OS X platform, which is caused by a short interval between when the dialog bo...
Unspecified vulnerability in Mozilla Firefox protocol-handler dialog box
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the protocol-handler dialog box in Mozilla Firefox versions prior to 44.0. The vulnerability can be exploited by remote attackers to conduct clickjacking...
An unspecified vulnerability exists in KDDI HOME SPOT CUBE devices.
KDDI HOME SPOT CUBE is a home wireless router product from KDDI Japan. A security vulnerability exists in previous versions of KDDI HOME SPOT CUBE 2. A remote attacker could exploit the vulnerability to conduct clickjacking attacks...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
Design/Logic Flaw
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
Design/Logic Flaw
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
CVE-2016-1941 concerns Mozilla Firefox on OS X prior to 44.0 where the file-download dialog allows a button to become available too quickly, enabling a crafted site to trigger a clickjacking action intended for a double-click. Exploitation would allow a remote attacker to perform a single-click a...
CVE-2016-1937
The CVE-2016-1937 issue concerns Firefox’s protocol-handler dialog, where a crafted page could trigger a single-click action intended as a double-click. OpenSUSE advisories document the fix as part of Mozilla Firefox updates to version 44.0 (on GA media), with NSS updated to 3.21 and NSPR to 4.11...
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1140
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...
CVE-2016-1140
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...
Code injection
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...
CVE-2016-1140
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...
CVE-2016-1140
CVE-2016-1140 affects KDDI HOME SPOT CUBE devices (pre‑version 2). The vulnerability is a clickjacking flaw exploitable remotely via unspecified vectors; exploitation details are not provided in the initial or connected documents. Affected product is a wireless router; impact noted includes poten...