Lucene search
K

9799 matches found

securityvulns
securityvulns
added 2005/11/08 12:0 a.m.31 views

[Full-disclosure] Advisory 21/2005: Multiple vulnerabilities in PHPKIT

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hardened PHP Project www.hardened-php.net -= Security Advisory =- Advisory: Multiple vulnerabilities in PHPKIT Release Date: 2005/11/07 Last Modified: 2005/11/04 Author: Christopher Kunz [email protected] Application: PHPKIT 1.6.1 R2 a...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/10/24 12:0 a.m.37 views

Debian DSA-868-1 : mozilla-thunderbird - several vulnerabilities

Several security-related problems have been discovered in Mozilla and derived programs. Some of the following problems don't exactly apply to Mozilla Thunderbird, even though the code is present. In order to keep the codebase in sync with upstream it has been altered nevertheless. The Common...

7.5CVSS6.8AI score0.21112EPSS
Exploits2References12
RedHat Linux
RedHat Linux
added 2005/10/06 7:46 p.m.5 views

security flaw

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface...

5CVSS5.9AI score0.01818EPSS
Exploits0References4
NVD
NVD
added 2005/09/23 7:3 p.m.25 views

CVE-2005-2704

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface...

5CVSS6.2AI score0.01818EPSS
Exploits0References31
Cvelist
Cvelist
added 2005/09/23 4:0 a.m.25 views

CVE-2005-2704

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface...

6.2AI score0.01818EPSS
Exploits0References31
RedHat Linux
RedHat Linux
added 2005/09/22 8:36 p.m.4 views

security flaw

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface...

5CVSS5.9AI score0.01818EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2005/09/22 12:0 a.m.29 views

firefox & mozilla -- multiple vulnerabilities

A Mozilla Foundation Security Advisory reports of multiple issues: Heap overrun in XBM image processing jackerror reports that an improperly terminated XBM image ending with space characters instead of the expected end tag can lead to a heap buffer overrun. This appears to be exploitable to insta...

7.5CVSS6.2AI score0.0686EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/08/23 12:0 a.m.32 views

Debian DSA-779-2 : mozilla-firefox - several vulnerabilities

We experienced that the update for Mozilla Firefox from DSA 779-1 unfortunately was a regression in several cases. Since the usual praxis of backporting apparently does not work, this update is basically version 1.0.6 with the version number rolled back, and hence still named 1.0.4-. For...

7.5CVSS6.5AI score0.68097EPSS
Exploits12References17
Tenable Nessus
Tenable Nessus
added 2005/08/23 12:0 a.m.41 views

Debian DSA-781-1 : mozilla-thunderbird - several vulnerabilities

Several problems have been discovered in Mozilla Thunderbird, the standalone mail client of the Mozilla suite. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-0989 Remote attackers could read portions of heap memory into a JavaScript string via the...

7.5CVSS6.2AI score0.68097EPSS
Exploits7References11
OSV
OSV
added 2005/08/21 12:0 a.m.29 views

DSA-779-2 mozilla-firefox - several

Bulletin has no description...

7.5CVSS6.5AI score0.68097EPSS
Exploits9
NVD
NVD
added 2005/08/03 4:0 a.m.20 views

CVE-2005-2414

Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service application crash via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering...

2.6CVSS6.4AI score0.03394EPSS
Exploits2References5
Cvelist
Cvelist
added 2005/08/03 4:0 a.m.24 views

CVE-2005-2414

Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service application crash via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering...

6.4AI score0.03394EPSS
Exploits2References5
CVE
CVE
added 2005/08/03 4:0 a.m.61 views

CVE-2005-2414

CVE-2005-2414 describes a race condition in the xpcom library (used by Firefox, Mozilla, Netscape, Galeon) that can crash the target browser. An attacker could trigger a hard crash by rendering a large HTML file that loads a DOM call from within nested DIV tags, causing parts of the currently ren...

2.6CVSS6.4AI score0.03394EPSS
Exploits2References5Affected Software1
Debian CVE
Debian CVE
added 2005/08/03 4:0 a.m.20 views

CVE-2005-2414

Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape, and Galeon, allows remote attackers to cause a denial of service application crash via a large HTML file that loads a DOM call from within nested DIV tags, which causes part of the currently rendering...

2.6CVSS6.1AI score0.03394EPSS
Exploits2
Ubuntu
Ubuntu
added 2005/08/01 5:47 p.m.61 views

USN-157-1: Mozilla Thunderbird vulnerabilities

Vladimir V. Perepelitsa discovered a bug in Thunderbird's handling of anonymous functions during regular expression string replacement. A malicious HTML email could exploit this to capture a random block of client memory. CAN-2005-0989 Georgi Guninski discovered that the types of certain XPInstal...

7.5CVSS6AI score0.68097EPSS
Exploits7
Cent OS
Cent OS
added 2005/07/25 1:17 a.m.87 views

galeon, mozilla security update

CentOS Errata and Security Advisory CESA-2005:587-01 Updated mozilla packages that fix various security issues are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgro...

7.5CVSS5.6AI score0.68097EPSS
Exploits9References8
Cent OS
Cent OS
added 2005/07/22 3:23 p.m.83 views

devhelp, mozilla security update

CentOS Errata and Security Advisory CESA-2005:587 Updated mozilla packages that fix various security issues are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup...

7.5CVSS5.6AI score0.68097EPSS
Exploits9References9
Cent OS
Cent OS
added 2005/07/22 3:22 p.m.81 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2005:601 Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References8
RedHat Linux
RedHat Linux
added 2005/07/22 10:41 a.m.1 views

security flaw

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as...

7.5CVSS6.1AI score0.05815EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2005/07/22 10:41 a.m.34 views

Important: Red Hat Security Advisory: mozilla security update

Updated mozilla packages that fix various security issues are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. A bug wa...

7.5CVSS5.6AI score0.68097EPSS
Exploits9References2
Rows per page
Query Builder