546 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in Help Viewer in Apple Mac OS X 10.6 before 10.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted help: URL, related to "URL parameters in HTML content."...
Memory corruption
The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via HTML content th...
CVE-2010-1417
The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via HTML content th...
CVE-2010-1417
The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via HTML content th...
IBM Rational RequisitePro ReqWebHelp Multiple XSS
IBM Rational RequisitePro is installed on the remote host. The installed version contains two JSP scripts that are affected by cross-site scripting vulnerabilities. Specifically, it fails to sanitize input to the 'searchWord', 'maxHits', 'scopedSearch', and 'scope' parameters of 'searchView.jsp'...
Living CMS Cross-Site Scripting vulnerability
---------------------------------------------------------------------- PT-2009-15 Positive Technologies Security Advisory Living CMS Cross-Site Scripting vulnerability ---------------------------------------------------------------------- --- Affected Software Living CMS Versions prior to 1.5...
iNTERNET.cms Cross-Site Scripting vulnerability
---------------------------------------------------------------------- PT-2009-33 Positive Technologies Security Advisory iNTERNET.cms Cross-Site Scripting vulnerability ---------------------------------------------------------------------- --- Affected Software iNTERNET.cms Versions prior to...
Ubuntu: Security Advisory (USN-822-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Security Advisory RHSA-2009:1125
The remote host is missing updates announced in advisory RHSA-2009:1125. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or,...
Analysis of web Trojan analysis automated 2 tricks-vulnerability warning-the black bar safety net
Now online web Trojans and more are several sets of a fixed code, The changes are not many, including script code encryption methods, almost all is to explain the type of encryption, since the hack is performed the process of hanging horse, Inglés for the automated analysis of web Trojan also...
[Positive Technologies SA:2009-15] Living CMS Cross-Site Scripting vulnerability
---------------------------------------------------------------------- PT-2009-15 Positive Technologies Security Advisory Living CMS Cross-Site Scripting vulnerability ---------------------------------------------------------------------- --- Affected Software Living CMS Versions 1.x prior to 1.5...
BLOG:CMS Cross-Site Scripting vulnerability
No description provided by source. ---------------------------------------------------------------------- PT-2009-14 Positive Technologies Security Advisory BLOG:CMS Cross-Site Scripting vulnerability ---------------------------------------------------------------------- --- Affected Software BLO...
[Positive Technologies SA:2009-20] A.CMS Multiple Vulnerabilities
---------------------------------------------------------------------- PT-2009-20 Positive Technologies Security Advisory A.CMS Multiple Vulnerabilities ---------------------------------------------------------------------- --- Affected Software A.CMS Versions 1.x prior to 1.23 Product Link:...
Microsoft Outlook Express / Microsoft Outlook DoS
Crash on styleposition:relative/style tableDoS/table in HTML content...
looyu-xss.txt
Application: LooYu Web IM Vendor: www.looyu.com Corporation: DuoYou, Inc. Version: Latest: 19 SEP 2008 - Home Edition, Enterprise & Professional Description: LooYu Web IM 2008 Cross-Site Scripting Vulnerabilities Background: ============== LooYu is a web-based group chat tool that lets invite a...
Debian Security Advisory DSA 1287-1 (ldap-account-manager (0.4.9-2sarge1))
The remote host is missing an update to ldap-account-manager 0.4.9-2sarge1 announced via advisory DSA 1287-1. OpenVAS Vulnerability Test $Id: deb12871.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1287-1 Authors: Thomas Reinke Copyright: Copyright c 2007...
Debian DSA-1287-1 : ldap-account-manager - multiple vulnerabilities
Two vulnerabilities have been identified in the version of ldap-account-manager shipped with Debian 3.1 sarge. - CVE-2006-7191 An untrusted PATH vulnerability could allow a local attacker to execute arbitrary code with elevated privileges by providing a malicious rm executable and specifying a PA...
[SECURITY] [DSA 1287-1] New ldap-account-manager packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1287-1 [email protected] http://www.debian.org/security/ Noah Meyerhans May 07, 2007 - ------------------------------------------------------------------------ Package : ldap-account-manager...
DSA-1287-1 ldap-account-manager
Bulletin has no description...
mIRC IRC URL Buffer Overflow
This module exploits a stack buffer overflow in mIRC 6.1. By submitting an overly long and specially crafted URL to the 'irc' protocol, an attacker can overwrite the buffer and control program execution. This module requires Metasploit: https://metasploit.com/download Current source:...