9800 matches found
Mozilla Suite DOM Property Code Execution (CVE-2005-1532)
The Mozilla web browser and its derivative, Firefox, are applications designed for tasks related to browsing the web, such as displaying HTML pages, downloading files, etc. The browsers fully support the Document Object Model DOM API and JavaScript JS. The browsers implement numerous restrictions...
Debian Security Advisory DSA 1868-1 (kde4libs)
The remote host is missing an update to kde4libs announced via advisory DSA 1868-1. OpenVAS Vulnerability Test $Id: deb18681.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1868-1 kde4libs Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian: Security Advisory (DSA-1867-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 11 Update: xerces-c27-2.7.0-8.fc11
Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and wri te XML data. A shared library is provided for parsing, generating, manipulatin g, and validating XML documents. Xerces-C is faithful to the XML 1.0...
[SECURITY] Fedora 10 Update: xerces-c-2.8.0-5.fc10
Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Xerces-C is faithful to the XML 1.0...
Adobe Flex 3.3 Cross Site Scripting
================================================== Adobe Flex 3.3 SDK DOM-Based XSS Public Release Date: 8/19/2009 Adam Bixby - Gotham Digital Science Affected Software: Adobe Flex 3.3 SDK and earlier ================================================== 1. Summary...
[SECURITY] [DSA 1868-1] New kde4libs packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1868-1 [email protected] http://www.debian.org/security/ Steffen Joeris August 19, 2009 http://www.debian.org/security/faq -...
DSA-1867-1 kdelibs - several vulnerabilities
Bulletin has no description...
DSA-1868-1 kde4libs - several vulnerabilities
Bulletin has no description...
Mandrake Security Advisory MDVSA-2009:167 (php)
The remote host is missing an update to php announced via advisory MDVSA-2009:167. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...
Design/Logic Flaw
mailnews in Mozilla Thunderbird before 2.0.0.18 and SeaMonkey before 1.1.13, when JavaScript is enabled in mail, allows remote attackers to obtain sensitive information about the recipient, or comments in forwarded mail, via script that reads the 1 .documentURI or 2 .textContent DOM properties...
[SECURITY] Fedora 11 Update: libxml2-2.7.3-3.fc11
This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...
[SECURITY] Fedora 10 Update: libxml2-2.7.3-2.fc10
This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...
Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
One bug to rule them all IE5,IE6,IE7,IE8,Netscape,Firefox,Safari,Opera,Konqueror, Seamonkey,Wii,PS3,iPhone,iPod,Nokia,Siemens.... and more. Update/Changes : ---------------- Backround : + I failed to include details about the nature of the bug DOM, the root cause is a DOM flaw and not a Javascrip...
openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-383)
The Mozilla XULRunner 1.8.1 engine received backports for security problems in 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used t...
openSUSE Security Update : mozilla-xulrunner190 (mozilla-xulrunner190-382)
The Mozilla XULRunner engine was updated to version 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin...
openSUSE Security Update : MozillaFirefox (MozillaFirefox-381)
The Mozilla Firefox browser was updated to version 3.0.5, fixing various security issues and stability problems. The following security issues were fixed : MFSA 2008-69 / CVE-2008-5513: Mozilla security researcher mozbugra4 reported vulnerabilities in the session-restore feature by which content...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-61)
This update of php5 fixes : - possible stack-based buffer overflow CVE-2008-2050 - incomplete escapeshellcmd CVE-2008-2051 - printf integer overflow CVE-2008-1384 - insecure GENERATESEED macro CVE-2008-2107 - timezone update for DST in Pakistan %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
New DOM Flaw Can Crash IE, Other Major Browsers
From The H Security The Luxembourg security specialists G-SEC have published details of a vulnerability in the majority of browsers which will either crash the browser or consume so much memory that it makes the computer virtually unusable. The trick is simple. Using JavaScript’s DOM Document...
[SECURITY] Fedora 11 Update: seamonkey-1.1.17-1.fc11
SeaMonkey is an all-in-one Internet application suite. It includes a browser, mail/news client, IRC client, JavaScript debugger, and a tool to inspect the DOM for web pages. It is derived from the application formerly known as Mozilla Application Suite...