42 matches found
Pivotal Single Sign-On for PCF Cross-Site Scripting Vulnerability
Pivotal Single Sign-On for PCF is a suite of single sign-on security access tools for PCFs from Pivotal Software, USA. A security vulnerability exists in Pivotal Single Sign-On for PCF versions 1.3.x prior to 1.3.4 and 1.4.x prior to 1.4.3. An attacker can exploit the vulnerability by injecting...
Mozilla Firefox document.write()方式堆溢出漏洞
BUGTRAQ ID: 44425 CVE ID: CVE-2010-3765 Firefox是一款非常流行的开源WEB浏览器。 在启用了JavaScript的情况下,Firefox的document.write方式处理结合DOM注入可能触发堆溢出。攻击者可以通过 nsCSSFrameConstructor::ContentAppended、appendChild等方式触发这个漏洞,导致完全入侵用户系统。 Mozilla Firefox 3.6.x Mozilla Firefox 3.5.x Mozilla Thunderbird 3.1.x Mozilla Thunderbird...