Lucene search
K

9799 matches found

Tenable Nessus
Tenable Nessus
added 2005/07/22 12:0 a.m.32 views

Fedora Core 4 : mozilla-1.7.10-1.5.1 (2005-619)

Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. A bug was found in the way Mozilla handled synthetic events. It is possible that Web content could generate events such as keystrokes or mouse clicks that could be used to steal data or...

7.5CVSS5.5AI score0.68097EPSS
Exploits8References2
RedHat Linux
RedHat Linux
added 2005/07/21 5:42 p.m.8 views

security flaw

Firefox before 1.0.4 and Mozilla Suite before 1.7.8 do not properly limit privileges of Javascript eval and Script objects in the calling context, which allows remote attackers to conduct unauthorized activities via "non-DOM property overrides," a variant of CVE-2005-1160...

7.5CVSS5.9AI score0.09473EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/07/21 5:42 p.m.5 views

security flaw

The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or the Script object...

5.1CVSS6AI score0.02718EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/07/21 5:42 p.m.6 views

security flaw

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as...

7.5CVSS6.1AI score0.05815EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2005/07/21 5:42 p.m.34 views

Important: Red Hat Security Advisory: thunderbird security update

Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2005/07/21 10:14 a.m.49 views

Important: Red Hat Security Advisory: firefox security update

An updated firefox package that fixes various security bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. A bug was found in the way Firefox...

7.5CVSS5.7AI score0.68097EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2005/07/21 12:0 a.m.33 views

Fedora Core 4 : firefox-1.0.6-1.1.fc4 (2005-605)

Mozilla Firefox is an open source Web browser. A bug was found in the way Firefox handled synthetic events. It is possible that Web content could generate events such as keystrokes or mouse clicks that could be used to steal data or execute malicious JavaScript code. The Common Vulnerabilities an...

7.5CVSS6.1AI score0.68097EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2005/07/21 12:0 a.m.43 views

Fedora Core 4 : thunderbird-1.0.6-1.1.fc4 (2005-606)

Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way Thunderbird handled anonymous functions during regular expression string replacement. It is possible for a malicious HTML mail to capture a random block of client memory. The Common Vulnerabilities and...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References1
Tenable Nessus
Tenable Nessus
added 2005/07/21 12:0 a.m.32 views

Fedora Core 3 : thunderbird-1.0.6-1.1.fc3 (2005-604)

Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way Thunderbird handled anonymous functions during regular expression string replacement. It is possible for a malicious HTML mail to capture a random block of client memory. The Common Vulnerabilities and...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References1
UbuntuCve
UbuntuCve
added 2005/07/13 4:0 a.m.28 views

CVE-2005-2269

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as...

7.5CVSS6.2AI score0.05815EPSS
Exploits1References5
Cvelist
Cvelist
added 2005/07/13 4:0 a.m.26 views

CVE-2005-2269

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as...

6.5AI score0.05815EPSS
Exploits1References24
NVD
NVD
added 2005/07/13 4:0 a.m.21 views

CVE-2005-2269

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as...

7.5CVSS6.5AI score0.05815EPSS
Exploits1References24
CVE
CVE
added 2005/07/13 4:0 a.m.86 views

CVE-2005-2269

CVE-2005-2269 affects Firefox <1.0.5, Mozilla

7.5CVSS6.5AI score0.05815EPSS
Exploits1References24Affected Software2
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.12 views

FreeBSD : mozilla -- privilege escalation via DOM property overrides (f650d5b8-ae62-11d9-a788-0001020eed82)

A Mozilla Foundation Security Advisory reports : mozbugra4 reported several exploits giving an attacker the ability to install malicious code or steal data, requiring only that the user do commonplace actions like click on a link or open the context menu. The common cause in each case was...

5.7AI score
Exploits0References2
Mozilla
Mozilla
added 2005/07/12 12:0 a.m.18 views

XHTML node spoofing — Mozilla

Parts of the browser UI relied too much on DOM node names without taking different namespaces into account and verifying that nodes really were of the expected type. An XHTML document could be used to create fake elements, for example, with content-defined properties that the browser would access...

6.8AI score
Exploits0References1Affected Software2
exploitpack
exploitpack
added 2005/05/16 12:0 a.m.12 views

Mozilla Suite And Firefox - DOM Property Overrides Code Execution

Mozilla Suite And Firefox - DOM Property Overrides Code Execution source: https://www.securityfocus.com/bid/13645/info Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model DOM...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/16 12:0 a.m.33 views

Mozilla Suite And Firefox - DOM Property Overrides Code Execution

source: https://www.securityfocus.com/bid/13645/info Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model DOM property values. An attacker may leverage this issue to execute...

7.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2005/05/12 4:0 a.m.40 views

CVE-2005-1532

Firefox before 1.0.4 and Mozilla Suite before 1.7.8 do not properly limit privileges of Javascript eval and Script objects in the calling context, which allows remote attackers to conduct unauthorized activities via "non-DOM property overrides," a variant of CVE-2005-1160...

7.5CVSS6AI score0.09473EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2005/05/11 3:56 p.m.63 views

USN-124-1: Mozilla and Firefox vulnerabilities

When a popup is blocked the user is given the ability to open that popup through the popup-blocking status bar icon and, in Firefox, through the information bar. Doron Rosenberg noticed that popups which are permitted by the user were executed with elevated privileges, which could be abused to...

7.5CVSS6AI score0.08283EPSS
Exploits3
Mozilla
Mozilla
added 2005/05/11 12:0 a.m.25 views

Privilege escalation via non-DOM property overrides — Mozilla

Additional checks were added to make sure Javascript eval and Script objects are run with the privileges of the context that created them, not the potentially elevated privilege of the context calling them in order to protect against an additional variant of MFSA 2005-41...

7AI score
Exploits0References2Affected Software2
Rows per page
Query Builder