CVE-2012-5354

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has multiple menus of SELECT elements active, which allows remote attackers to conduct clickjacking attacks via vectors involving an XPI file, the window.ope...

CVE-2012-5354

CVE-2012-5354 is covered by details in connected advisories/plugins. The open-connected sources show that Mozilla Firefox before 16.0, Mozilla Thunderbird before 16.0, and SeaMonkey before 2.13 are vulnerable to a clickjacking-style issue when navigating away from a page that has an active set of...

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : firefox vulnerabilities (USN-1600-1)

Henrik Skupin, Jesse Ruderman, Christian Holler, Soroush Dalili and others discovered several memory corruption flaws in Firefox. If a user were tricked into opening a specially crafted web page, a remote attacker could cause Firefox to crash or potentially execute arbitrary code as the user...

USN-1600-1: Firefox vulnerabilities

Henrik Skupin, Jesse Ruderman, Christian Holler, Soroush Dalili and others discovered several memory corruption flaws in Firefox. If a user were tricked into opening a specially crafted web page, a remote attacker could cause Firefox to crash or potentially execute arbitrary code as the user...

LinkedIn Clickjacking / Open Redirection

Linkedin's Clickjacking & Open Url Redirection Vulnerabilities Vulnerability Title: Secondary Email Addition & Deletion Via Click Jacking in Linkedin Website Link: Tried on Indian version Found on: 06/08/2012 Author: Ajay Singh Negi Version: All language versions would be vulnerable Tested on:...

FreeBSD : mozilla -- multiple vulnerabilities (dbf338d0-dce5-11e1-b655-14dae9ebcf89)

The Mozilla Project reports : MFSA 2012-42 Miscellaneous memory safety hazards rv:14.0/ rv:10.0.6 MFSA 2012-43 Incorrect URL displayed in addressbar through drag and drop MFSA 2012-44 Gecko memory corruption MFSA 2012-45 Spoofing issue with location MFSA 2012-46 XSS through data: URLs MFSA 2012-4...

Scientific Linux Security Update : firefox on SL5.x, SL6.x i386/x86_64 (20120717)

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2012-1948,...

Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20120717)

Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed content. Malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. CVE-2012-1948,...

Scientific Linux Security Update : squirrelmail on SL4.x, SL5.x (20120208)

SquirrelMail is a standards-based webmail package written in PHP. A cross-site scripting XSS flaw was found in the way SquirrelMail performed the sanitization of HTML style tag content. A remote attacker could use this flaw to send a specially crafted Multipurpose Internet Mail Extensions MIME...

CentOS Update for squirrelmail CESA-2012:0103 centos5

Check for the Version of squirrelmail OpenVAS Vulnerability Test CentOS Update for squirrelmail CESA-2012:0103 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

CentOS Update for squirrelmail CESA-2012:0103 centos4

Check for the Version of squirrelmail OpenVAS Vulnerability Test CentOS Update for squirrelmail CESA-2012:0103 centos4 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

CentOS Update for thunderbird CESA-2012:1089 centos6

Check for the Version of thunderbird OpenVAS Vulnerability Test CentOS Update for thunderbird CESA-2012:1089 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

CentOS Update for thunderbird CESA-2012:1089 centos5

Check for the Version of thunderbird OpenVAS Vulnerability Test CentOS Update for thunderbird CESA-2012:1089 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

CentOS Update for firefox CESA-2012:1088 centos5

Check for the Version of firefox OpenVAS Vulnerability Test CentOS Update for firefox CESA-2012:1088 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

CentOS Update for firefox CESA-2012:1088 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for squirrelmail CESA-2012:0103 centos4

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for squirrelmail CESA-2012:0103 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mozilla Products Certificate Page Clickjacking Vulnerability (Windows)

This host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to clickjacking vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsclickjackingvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products Certificate Page Clickjacking Vulnerability Windows Authors:...

SeaMonkey 2.x < 2.11 Multiple Vulnerabilities

Binary data 6521.prm...

Mozilla Products Certificate Page Clickjacking Vulnerability (Mac OS X)

This host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to clickjacking vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsclickjackingvulnmacosx.nasl 6445 2017-06-27 12:31:06Z santu $ Mozilla Products Certificate Page Clickjacking Vulnerability Mac OS X Authors:...