Lucene search
+L

115 matches found

Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.47 views

Mozilla Firefox < 67.0 Multiple Vulnerabilities

Binary data 700727.prm...

9.8CVSS7.8AI score0.09393EPSS
Exploits6References22
Mozilla
Mozilla
added 2019/05/21 12:0 a.m.143 views

Security vulnerabilities fixed in Firefox 67 — Mozilla

If hyperthreading is not disabled, a timing attack vulnerability exists, similar to previous Spectre attacks. Apple has shipped macOS 10.14.5 with an option to disable hyperthreading in applications running untrusted code in a thread through a new sysctl. Firefox now makes use of it on the main...

9.8CVSS1AI score0.06175EPSS
Exploits1References22Affected Software1
UbuntuCve
UbuntuCve
added 2019/05/21 12:0 a.m.32 views

CVE-2019-11695

A custom cursor defined by scripting on a site can position itself over the addressbar to spoof the actual cursor when it should not be allowed outside of the primary web content area. This could be used by a malicious site to trick users into clicking on permission prompts, doorhanger...

4.3CVSS6.7AI score0.00737EPSS
Exploits1References3
OSV
OSV
added 2019/05/21 12:0 a.m.8 views

UBUNTU-CVE-2019-11695

A custom cursor defined by scripting on a site can position itself over the addressbar to spoof the actual cursor when it should not be allowed outside of the primary web content area. This could be used by a malicious site to trick users into clicking on permission prompts, doorhanger...

4.3CVSS6.6AI score0.00737EPSS
Exploits1References4
FreeBSD
FreeBSD
added 2019/05/21 12:0 a.m.51 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2019-9815: Disable hyperthreading on content JavaScript threads on macOS CVE-2019-9816: Type confusion with object groups and UnboxedObjects CVE-2019-9817: Stealing of cross-domain images using canvas CVE-2019-9818: Use-after-free in crash generation server...

9.8CVSS0.09393EPSS
Exploits6References3
VulnCheck KEV
VulnCheck KEV
added 2019/02/06 12:0 a.m.6 views

VulnCheck KEV: CVE-2019-11695

A custom cursor defined by scripting on a site can position itself over the addressbar to spoof the actual cursor when it should not be allowed outside of the primary web content area. This could be used by a malicious site to trick users into clicking on permission prompts, doorhanger...

4.3CVSS6.6AI score0.00737EPSS
Exploits1References1
Prion
Prion
added 2009/06/10 6:0 p.m.22 views

Design/Logic Flaw

WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser's display of 1 the host name, 2 security indicators, and unspecified other UI elements via a custom cursor in conjunction with a modified CSS3 hotspot property...

2.6CVSS6.7AI score0.02888EPSS
Exploits2References13Affected Software1
UbuntuCve
UbuntuCve
added 2009/06/10 6:0 p.m.17 views

CVE-2009-1710

WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser's display of 1 the host name, 2 security indicators, and unspecified other UI elements via a custom cursor in conjunction with a modified CSS3 hotspot property...

2.6CVSS5.8AI score0.02888EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.36 views

Ubuntu Update for firefox regression USN-428-2

Ubuntu Update for Linux kernel vulnerabilities USN-428-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN4282.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox regression USN-428-2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

9.3CVSS0.8AI score0.5036EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.29 views

Ubuntu Update for firefox vulnerabilities USN-428-1

Ubuntu Update for Linux kernel vulnerabilities USN-428-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4281.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox vulnerabilities USN-428-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

9.3CVSS0.9AI score0.5036EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.41 views

Ubuntu 6.06 LTS : firefox regression (USN-428-2)

USN-428-1 fixed vulnerabilities in Firefox 1.5. However, changes to library paths caused applications depending on libnss3 to fail to start up. This update fixes the problem. We apologize for the inconvenience. Several flaws have been found that could be used to perform Cross-site scripting...

9.3CVSS8.8AI score0.5036EPSS
Exploits10References15
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.32 views

Ubuntu 5.10 / 6.06 LTS / 6.10 : firefox vulnerabilities (USN-428-1)

Several flaws have been found that could be used to perform Cross-site scripting attacks. A malicious website could exploit these to modify the contents or steal confidential data such as passwords from other opened web pages. CVE-2006-6077, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981,...

9.3CVSS8.7AI score0.5036EPSS
Exploits11References16
Ubuntu
Ubuntu
added 2007/03/01 2:56 a.m.56 views

USN-428-1: Firefox vulnerabilities

Several flaws have been found that could be used to perform Cross-site scripting attacks. A malicious web site could exploit these to modify the contents or steal confidential data such as passwords from other opened web pages. CVE-2006-6077, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981,...

9.3CVSS8.8AI score0.5036EPSS
Exploits10
RedHat Linux
RedHat Linux
added 2007/02/24 2:41 a.m.8 views

security flaw

GUI overlay vulnerability in Mozilla Firefox 1.5.x before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 allows remote attackers to spoof certain user interface elements, such as the host name or security indicators, via the CSS3 hotspot property with a large, transparent, custom...

6.4CVSS5.9AI score0.01548EPSS
Exploits0References4
Mozilla
Mozilla
added 2007/02/23 12:0 a.m.38 views

Spoofing using custom cursor and CSS3 hotspot — Mozilla

David Eckel reported that browser UI elements--such as the host name and security indicators--could be spoofed by using a large, mostly transparent, custom cursor and adjusting the CSS3 hotspot property so that the visible part of the cursor floated outside the browser content area...

6.4CVSS3.7AI score0.01548EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder