3799 matches found
CVE-2016-2072
Citrix NetScaler ADC and NetScaler Gateway are affected by a clickjacking vulnerability in the Administrative Web Interface. Affected product lines include Citrix NetScaler ADC/NetScaler Gateway 11.x before 11.0 Build 64.34, 10.5 before 10.5 Build 59.13, 10.5.e before Build 59.1305.e, and 10.1. T...
CVE-2016-2072
The Administrative Web Interface in Citrix NetScaler Application Delivery Controller ADC and NetScaler Gateway 11.x before 11.0 Build 64.34, 10.5 before 10.5 Build 59.13, 10.5.e before Build 59.1305.e, and 10.1 allows remote attackers to conduct clickjacking attacks via unspecified vectors...
Ubuntu 14.04 LTS : Firefox regression (USN-2880-2)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2880-2 advisory. USN-2880-1 fixed vulnerabilities in Firefox. This update introduced a regression which caused Firefox to crash on startup with some configurations. This update...
Mozilla Firefox Clickjacking Attack Vulnerability
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the file-download dialog box in versions of Mozilla Firefox prior to 44.0 on the OS X platform, which is caused by a short interval between when the dialog bo...
Unspecified vulnerability in Mozilla Firefox protocol-handler dialog box
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the protocol-handler dialog box in Mozilla Firefox versions prior to 44.0. The vulnerability can be exploited by remote attackers to conduct clickjacking...
An unspecified vulnerability exists in KDDI HOME SPOT CUBE devices.
KDDI HOME SPOT CUBE is a home wireless router product from KDDI Japan. A security vulnerability exists in previous versions of KDDI HOME SPOT CUBE 2. A remote attacker could exploit the vulnerability to conduct clickjacking attacks...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
Design/Logic Flaw
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
Design/Logic Flaw
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
CVE-2016-1941 concerns Mozilla Firefox on OS X prior to 44.0 where the file-download dialog allows a button to become available too quickly, enabling a crafted site to trigger a clickjacking action intended for a double-click. Exploitation would allow a remote attacker to perform a single-click a...
CVE-2016-1937
The CVE-2016-1937 issue concerns Firefox’s protocol-handler dialog, where a crafted page could trigger a single-click action intended as a double-click. OpenSUSE advisories document the fix as part of Mozilla Firefox updates to version 44.0 (on GA media), with NSS updated to 3.21 and NSPR to 4.11...
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1941
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended...
CVE-2016-1140
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...
CVE-2016-1140
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...
Code injection
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors...