5 matches found
CVE-2019-9633
gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial of service gsocketclientconnectedcallback mishandling and application crash via a crafted web sit...
DEBIAN-CVE-2019-8375
The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.90 and WebKitGTK+ through 2.22.6 and other products, does not prevent the script dialog size from exceeding the web view size, which allows remote attackers to cause a denial of service Buffer Overflow or possibly have unspecifi...
Gnome Web (Epiphany) Denial Of Service
Title: Gnome Web/Epiphany Browser libephymain.so in GNOME WEB/Epiphany PoC: b1tch3z = window.open"https://www.google.com", "bl1ngbl1ng", "width=250,height=250"; b1tch3z.document.write"ua b1tch3z"; // https://github.com/undergroundagency // https://github.com/ldpreload Video PoC:...
GNOME Web (Epiphany) Weak Password Vulnerability
GNOME Web Epiphany is a browser product for the GNOME desktop. The product provides paging, cookie management, pop-up ad control, and other features. A security vulnerability exists in GNOME Web Epiphany. A remote attacker can exploit this vulnerability to obtain stored passwords...
UBUNTU-CVE-2017-1000025
GNOME Web Epiphany 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites...