Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : firefox vulnerability (USN-1758-1)

It was discovered that Firefox contained a memory safety issue. If a user were tricked into opening a specially crafted page with the HTML editor, a remote attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program. Note that Tenable Network Securit...

USN-1758-1: Firefox vulnerability

It was discovered that Firefox contained a memory safety issue. If a user were tricked into opening a specially crafted page with the HTML editor, a remote attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program...

Mozilla: Use-after-free in HTML Editor (MFSA 2013-29)

Use-after-free vulnerability in the nsEditor::IsPreformatted function in editor/libeditor/base/nsEditor.cpp in Mozilla Firefox before 19.0.2, Firefox ESR 17.x before 17.0.4, Thunderbird before 17.0.4, Thunderbird ESR 17.x before 17.0.4, and SeaMonkey before 2.16.1 allows remote attackers to execu...

Firefox ESR 17.x < 17.0.4 nsHTMLEditor Use-After-Free

The installed version of Firefox ESR 17.x is earlier than 17.0.4, and thus, is potentially affected by a use-after-free vulnerability. An error exists in the HTML editor nsHTMLEditor related to content script and the calling of the function 'document.execCommand' while internal editor operations...

MLS Property Finder Improper Access Control

=========================================================== MLS Property Finder Improper Access Control Vulnerability =========================================================== :----------------------------------------------------------------------------------------------------------------------...

Firefox < 19.0.2 nsHTMLEditor Use-After-Free (Mac OS X)

The installed version of Firefox is earlier than 19.0.2 and thus, is potentially affected by a use-after-free vulnerability. An error exists in the HTML editor nsHTMLEditor related to content script and the calling of the function 'document.execCommand' while internal editor operations are runnin...

Firefox < 19.0.2 nsHTMLEditor Use-After-Free

The installed version of Firefox is earlier than 19.0.2, and thus, is potentially affected by a use-after-free vulnerability. An error exists in the HTML editor nsHTMLEditor related to content script and the calling of the function 'document.execCommand' while internal editor operations are...

mozilla -- use-after-free in HTML Editor

The Mozilla Project reports: MFSA 2013-29 Use-after-free in HTML Editor...

Use-after-free in HTML Editor — Mozilla

VUPEN Security, via TippingPoint's Zero Day Initiative, reported a use-after-free within the HTML editor when content script is run by the document.execCommand function while internal editor operations are occurring. This could allow for arbitrary code execution...

Scientific Linux Security Update : seamonkey on SL4.x i386/x86_64

SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey handled frame objects with certain names. An attacker could use this flaw to cause a plug-in to grant its content access to another site or the local file...

CentOS Update for seamonkey CESA-2011:1167 centos4 x86_64

Check for the Version of seamonkey OpenVAS Vulnerability Test CentOS Update for seamonkey CESA-2011:1167 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

CentOS Update for seamonkey CESA-2011:1344 centos4 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for seamonkey CESA-2011:1266 centos4 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for seamonkey CESA-2010:0967 centos4 x86_64

Check for the Version of seamonkey OpenVAS Vulnerability Test CentOS Update for seamonkey CESA-2010:0967 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

CVE-2012-1036

CVE-2012-1036 is an XSS vulnerability in DotNetNuke's Telerik HTML editor prior to 5.6.4 and 6.x prior to 6.1.0. The issue, triggered by specially crafted HTML/JavaScript in messages, could allow remote attackers to inject arbitrary script or HTML. Impact is explained as cross-site scripting with...

CVE-2012-1036

Cross-site scripting XSS vulnerability in the telerik HTML editor in DotNetNuke before 5.6.4 and 6.x before 6.1.0 allows remote attackers to inject arbitrary web script or HTML via a message...

Microsoft MSDN - Persistent Web Service Vulnerability

Document Title: =============== Microsoft MSDN - Persistent Web Service Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=450 MSRC ID1: 12152 MSRC ID2: 12228 Release Date: ============= 2012-04-07 Vulnerability Laboratory ID VL-ID:...

Microsoft Bing - Persistent Web Service Vulnerability

Document Title: =============== Microsoft Bing - Persistent Web Service Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=449 MSRC ID1: 12173 MSRC ID2: 12227 Release Date: ============= 2012-03-14 Vulnerability Laboratory ID VL-ID:...

seamonkey security update

CentOS Errata and Security Advisory CESA-2012:0084 Updated seamonkey packages that fix two security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base...

Critical: Red Hat Security Advisory: seamonkey security update

Updated seamonkey packages that fix two security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...