4336 matches found
Firefox < 10.0 Multiple Vulnerabilities (Mac OS X)
The installed version of Firefox 9.x is potentially affected by the following security issues : - A use-after-free error exists related to removed nsDOMAttribute child nodes.CVE-2011-3659 - Various memory safety issues exist. CVE-2012-0442, CVE-2012-0443 - Memory corruption errors exist related t...
<iframe> element exposed across domains via name attribute — Mozilla
Vitaly Nevgen reported that an attacker could replace a sub-frame in another domain's document by using the name attribute of the sub-frame as a form submission target. This can potentially allow for phishing attacks against users and violates the HTML5 frame navigation policy...
CVE-2011-3925
Removed by vendor...
Stable Channel Update
The Stable channel has been updated to 16.0.912.77 for Windows, Mac, Linux and Chrome Frame Security fixes and rewards: Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix. $1000 106484...
chromium -- multiple vulnerabilities
Google Chrome Releases reports: 106672 High CVE-2011-3921: Use-after-free in animation frames. Credit to Boris Zbarsky of Mozilla. 107128 High CVE-2011-3919: Heap-buffer-overflow in libxml. Credit to Juri Aedla. 108006 High CVE-2011-3922: Stack-buffer-overflow in glyph handling. Credit to Google...
Iranian engineer hijack U.S. drone by GPS hack [Video Explanation]
An Iranian engineer working on the captured US drone has said that Iran exploited a weakness in the craft's navigation system to hijack it. The aircraft was downed through a relatively unsophisticated cyber-attack that tricked its global positioning systems GPS. The technique, known as "GPS...
Fedora 15 : phpMyAdmin-3.4.7-1.fc15 (2011-15469)
"Changes for 3.4.7.0 2011-10-23 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Fedora Security Advisory 2011-15469. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid56798;...
Fedora 14 : phpMyAdmin-3.4.7-1.fc14 (2011-15472)
"Changes for 3.4.7.0 2011-10-23 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Fedora Security Advisory 2011-15472. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid56799;...
SuSE 10 Security Update : pure-ftpd (ZYPP Patch Number 7723)
The OES Netware add-ons in pure-ftpd had a security problem and some bugs, which are fixed by this update. A local attacker could overwrite local files when the OES remote server feature of pure-ftpd is enabled due to a directory traversal. CVE-2011-3171 Additionally the following bugs have been...
5w five-dimensional Site Navigation v8. 0 vulnerabilities and fixes-vulnerability warning-the black bar safety net
// upload\i\index.php ? php //Slightly $controller = ! empty$GET'c' ? $GET'c' : 'index'; $action = ! empty$GET'a' ? $GET'a' : 'index'; // //cookie to automatically log and determines the uri if isset$COOKIE'cUser' && $COOKIE'cUser''userID' != 0 $userID = GetCUserID; $domain = GetCUserDomain; $sql...
iPad Finally Has a Facebook Application
iPad Finally Has a Facebook Application Facebook has just released its official iPad app. The tablet device was unveiled in January 2010, but development and negotiations with Apple stalled the release of Facebook's app until now. Facebook for iPad is now available in App Store. We've been waitin...
iPad Finally Has a Facebook Application
iPad Finally Has a Facebook Application Facebook has just released its official iPad app. The tablet device was unveiled in January 2010, but development and negotiations with Apple stalled the release of Facebook's app until now. Facebook for iPad is now available in App Store. We've been waitin...
OnStar to Track Speed, Location of Cars, Even After Users Opt Out
Cars with OnStar’s built-in technology will begin having their where-abouts monitored in December, even if their owners opt-out of the service, according to a new privacy statement issued by the vehicle navigation and emergency notification service this week. The document, available here in .PDF...
Code Widgets DataBound Collapsible Menu SQL Injection
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 inj3ct0r 1337 Day Team 1 0 0...
1 1 4. Site Navigation guestbook injection vulnerability-vulnerability warning-the black bar safety net
Rain forest wind the 1 1 4. Site Navigation program message file exists injection vulnerabilities. 漏洞 文件 feedback/feedback.php An attacker using the EXP can get administrator ID and MD5 password. Version:=1.5 EXP is as follows: ? php $sbcopyright=' ---------------------------------------- 114la...
Set sail for the enterprise built Station system cookie injection vulnerability-vulnerability warning-the black bar safety net
Sail mechanical and electrical equipment enterprise built Station system, The system do businesses stand dynamic templates, code interface separation, is a set of website user with no technical threshold, simple operation, convenient maintenance, powerful, secure and reliable website tool. Websit...
CVE-2011-1446
Google Chrome before 11.0.696.57 allows remote attackers to spoof the URL bar via vectors involving 1 a navigation error or 2 an interrupted load...
Design/Logic Flaw
Google Chrome before 11.0.696.57 allows remote attackers to spoof the URL bar via vectors involving 1 a navigation error or 2 an interrupted load...
CVE-2011-1446
Removed by vendor...
Google's Chrome 11 fixes $16,500 worth of bugs !!
Google's Chrome web browser is now at version 11, and its release is marked by a record payout for security fixes as well as a speech translation feature. A total of 27 security vulnerabilities are fixed in the latest stable release for Windows, Mac, Linux and Chrome Frame. Individual rewards wer...