EUVD-2006-0300

Malware in sbrugna...

Megacubo 5.0.7 Remote File Download And Execute Exploit

Megacubo 5.0.7 download & Execute by :JJunior site: http://www.musicastop.com.br/ tested against Internet Explorer 7 and Mozilla Firefox 1.5 Windows Xp sp 3 software site: http://www.megacubo.net/tv/ download url:...

Megacubo 5.0.7 - 'mega://' Arbitrary File Download and Execute

Megacubo 5.0.7 download & Execute by :JJunior site: http://www.musicastop.com.br/ tested against Internet Explorer 7 and Mozilla Firefox 1.5 Windows Xp sp 3 software site: http://www.megacubo.net/tv/ download url:...

Slackware 11.0 / 12.0 : firefox (SSA:2007-200-01)

New mozilla-firefox packages are available for Slackware 11.0 and 12.0 to fix security issues. Note that Firefox 1.5.x has reached its EOL end of life and is no longer being updated by mozilla.com. Users of Firefox 1.5.x are encouraged to upgrade to Firefox 2.x. Since we use the official Firefox...

CVE-2007-2869

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

security flaw

GUI overlay vulnerability in Mozilla Firefox 1.5.x before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 allows remote attackers to spoof certain user interface elements, such as the host name or security indicators, via the CSS3 hotspot property with a large, transparent, custom...

security flaw

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object window.navigator that are accessed when Java starts up, which causes a crash that leads to code execution...

DEBIAN-CVE-2006-3810

Cross-site scripting XSS vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapperwindow.Function construct...

security flaw

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object window.navigator that are accessed when Java starts up, which causes a crash that leads to code execution...

CVE-2006-3803

Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code by causing the garbage collector to delete a temporary variable while it is still being used...

Microsoft Windows Media Player 9 - Plugin Overflow (MS06-006) (Metasploit)

Microsoft Windows Media Player 9 - Plugin Overflow MS06-006 Metasploit This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the...

Mozilla Firefox QueryInterface method memory corruption

Added: 02/10/2006 CVE: CVE-2006-0295 BID: 16476 OSVDB: 22893 Background Mozilla is a suite of Internet client products available for multiple platforms. Problem A memory corruption in the QueryInterface method of the Location and Navigator objects leads to command execution. Resolution Upgrade to...

Memory corruption

The function allocation code jsNewFunction in jsfun.c in Firefox 1.5 allows attackers to cause a denial of service memory corruption and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects...

DEBIAN-CVE-2006-0295

Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects, which leads to memory corruption...

icq-xss.txt

Title: ICQ Cross Site Scripting Author: Simo Ben youssef aka 6mOHaCk Date: 10 January 2006 MorX Security Research Team http://www.morx.org Service: Web/Chat Vendor: ICQ.com Vulnerability: Cross Site Scripting / Cookie-Theft / Relogin attacks Severity: Medium/High Tested on: Microsoft IE 6.0 and...

Mozilla Firefox 1.5 - history.dat Looping (PoC)

Mozilla Firefox 1.5 - history.dat Looping PoC -- heh function ex var buffer = ""; for var i = 0; i ZIPLOCK says CLICK ME milw0rm.com 2005-12-07...