CVE-2011-0219

CVE-2011-0219 affects Apple Safari prior to 5.0.6, where a Java applet loading fonts can bypass the Same Origin Policy and alter the rendering of text from arbitrary websites. The issue is described in the Apple advisory as part of Safari’s vulnerabilities fixed by Safari 5.0.6 and in later 5.1 u...

Opera Browser Multiple Vulnerabilities Jul-11 (Windows)

The host is installed with Opera browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulnwin02jul11.nasl 7006 2017-08-25 11:51:20Z teissa $ Opera Browser Multiple Vulnerabilities July-11 Windows Authors: Madhuri D Copyright: Copyright c 2011 Greenbone...

Opera < 11.10 Multiple Vulnerabilities

The version of Opera installed on the remote Windows host is earlier than 11.10 and thus is potentially affected by the following vulnerabilities : - An unspecified vulnerability allows remote attackers to hijack searches and customizations using unspecified third-party applications. CVE-2011-263...

Opera Browser Multiple Vulnerabilities (Jul 2011) - Windows

Opera browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera < 11.10 Multiple Vulnerabilities

Binary data 5988.prm...

Hardcoded credentials

Opera before 11.10 allows remote attackers to cause a denial of service application crash via an HTML document that has an empty parameter value for an embedded Java applet...

CVE-2011-2640

CVE-2011-2640 affects Opera before 11.10. An HTML document with an empty parameter value for an embedded Java applet could cause the browser to crash (remote denial of service). Remediation: upgrade to Opera 11.10 or newer as indicated by the referenced advisories.

CVE-2011-2040

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...

Design/Logic Flaw

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...

CVE-2011-2040

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...

New 64-Bit Rootkit Being Used to Steal Banking Credentials

Security researchers have come across a new rootkit that is designed specifically to infect 64-bit Windows systems and steal users’ online banking credentials. It’s believed to be the first piece of malware of its kind that is capable of compromising x64 systems. The new rootkit is being used by...

Authentication flaw

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls...

Mandriva Update for firefox MDVSA-2011:079 (firefox)

Check for the Version of firefox OpenVAS Vulnerability Test Mandriva Update for firefox MDVSA-2011:079 firefox Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

openSUSE Security Update : MozillaFirefox (MozillaFirefox-4459)

Mozilla Firefox was updated to the 3.6.17 security release. MFSA 2011-12: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances,...

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7491)

Mozilla Firefox was updated to the 3.6.17 security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we...

Mandriva Update for firefox MDVSA-2011:079 (firefox)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 4463)

Mozilla Firefox was updated to the 3.6.17 security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we...

Oracle Java Applet2ClassLoader Vulnerability

Added: 05/05/2011 CVE: CVE-2010-4452 BID: 46388 OSVDB: 71193 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Probl...

SuSE 10 Security Update : Mozilla XULrunner (ZYPP Patch Number 7493)

Mozilla XULRunner 1.9.1 was updated to the 1.9.1.19 security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, a...

CVE-2011-0067

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls...