Lucene search
K

184 matches found

OpenVAS
OpenVAS
added 2009/01/13 12:0 a.m.50 views

Debian: Security Advisory (DSA-1696-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS10AI score0.43921EPSS
Exploits18References3
OpenVAS
OpenVAS
added 2009/01/13 12:0 a.m.28 views

Ubuntu USN-701-2 (mozilla-thunderbird)

The remote host is missing an update to mozilla-thunderbird announced via advisory USN-701-2. Several flaws were discovered in the browser engine. If a user had Javascript enabled, these problems could allow an attacker to crash Thunderbird and possibly execute arbitrary code with user privileges...

10CVSS0.4AI score0.03201EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/01/08 12:0 a.m.54 views

Debian DSA-1696-1 : icedove - several vulnerabilities

Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer...

10CVSS9.2AI score0.43921EPSS
Exploits18References55
OSV
OSV
added 2009/01/07 12:0 a.m.38 views

DSA-1696-1 icedove - several vulnerabilities

Bulletin has no description...

10CVSS10AI score0.43921EPSS
Exploits18
Ubuntu
Ubuntu
added 2009/01/06 11:31 p.m.81 views

USN-701-2: Thunderbird vulnerabilities

Several flaws were discovered in the browser engine. If a user had Javascript enabled, these problems could allow an attacker to crash Thunderbird and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Thunderbird could be...

10CVSS8.6AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2009/01/06 11:17 p.m.73 views

USN-701-1: Thunderbird vulnerabilities

Several flaws were discovered in the browser engine. If a user had Javascript enabled, these problems could allow an attacker to crash Thunderbird and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Thunderbird could be...

10CVSS8.6AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/12/18 12:17 a.m.59 views

USN-690-3: Firefox vulnerabilities

Several flaws were discovered in the browser engine. These problems could allow an attacker to crash the browser and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Firefox could be bypassed by utilizing XBL-bindings. An...

10CVSS8.6AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/12/18 12:8 a.m.76 views

USN-690-2: Firefox vulnerabilities

Several flaws were discovered in the browser engine. These problems could allow an attacker to crash the browser and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Firefox could be bypassed by utilizing XBL-bindings. An...

10CVSS8.3AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/11/26 12:42 a.m.69 views

USN-668-1: Thunderbird vulnerabilities

Georgi Guninski, Michal Zalewsk and Chris Evans discovered that the same-origin check in Thunderbird could be bypassed. If a user were tricked into opening a malicious website, an attacker could obtain private information from data stored in the images, or discover information about software on t...

10CVSS8.7AI score0.05865EPSS
Exploits1
OSV
OSV
added 2008/11/23 12:0 a.m.38 views

DSA-1669-1 xulrunner - several vulnerabilities

Bulletin has no description...

10CVSS9.8AI score0.43921EPSS
Exploits17
Tenable Nessus
Tenable Nessus
added 2008/11/20 12:0 a.m.254 views

Mozilla Thunderbird < 2.0.0.18 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 2.0.0.18. Such versions are potentially affected by the following security issues : - The canvas element can be used in conjunction with an HTTP redirect to bypass same-origin restrictions and gain access to the content in arbitrary images from...

10CVSS8.9AI score0.05865EPSS
Exploits1References17
Ubuntu
Ubuntu
added 2008/11/17 9:26 p.m.72 views

USN-667-1: Firefox and xulrunner vulnerabilities

Liu Die Yu discovered an information disclosure vulnerability in Firefox when using saved .url shortcut files. If a user were tricked into downloading a crafted .url file and a crafted HTML file, an attacker could steal information from the user's cache. CVE-2008-4582 Georgi Guninski, Michal...

10CVSS8.7AI score0.10187EPSS
Exploits2
Mozilla
Mozilla
added 2008/11/12 12:0 a.m.29 views

nsXMLHttpRequest::NotifyEventListeners() same-origin violation — Mozilla

Mozilla security researcher mozbugra4 reported that the same-origin check in nsXMLHttpRequest::NotifyEventListeners could be bypassed. This vulnerability could be used to execute JavaScript in the context of a different website...

7.5CVSS1.2AI score0.03029EPSS
Exploits0References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2008/10/09 12:0 a.m.42 views

Debian DSA-1649-1 : iceweasel - several vulnerabilities

Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer overfl...

10CVSS9.1AI score0.43921EPSS
Exploits15References29
OSV
OSV
added 2008/10/08 12:0 a.m.40 views

DSA-1649-1 iceweasel - several vulnerabilities

Bulletin has no description...

10CVSS9.8AI score0.43921EPSS
Exploits15
Ubuntu
Ubuntu
added 2008/09/26 2:32 a.m.89 views

USN-647-1: Thunderbird vulnerabilities

It was discovered that the same-origin check in Thunderbird could be bypassed. If a user had JavaScript enabled and were tricked into opening a malicious website, an attacker may be able to execute JavaScript in the context of a different website. CVE-2008-3835 Several problems were discovered in...

10CVSS8.7AI score0.07351EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2008/09/26 12:0 a.m.17 views

Mozilla Thunderbird < 2.0.0.17 Multiple Vulnerabilities

Binary data 4696.prm...

10CVSS7.3AI score0.43921EPSS
Exploits16References25
Ubuntu
Ubuntu
added 2008/09/25 6:29 p.m.64 views

USN-645-3: Firefox and xulrunner regression

USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes t...

8.8AI score
Exploits0References1
Ubuntu
Ubuntu
added 2008/09/24 11:39 a.m.69 views

USN-645-2: Firefox vulnerabilities

USN-645-1 fixed vulnerabilities in Firefox and xulrunner for Ubuntu 7.04, 7.10 and 8.04 LTS. This provides the corresponding update for Ubuntu 6.06 LTS. Original advisory details: Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were...

10CVSS8.8AI score0.43921EPSS
Exploits15
Ubuntu
Ubuntu
added 2008/09/24 10:20 a.m.79 views

USN-645-1: Firefox and xulrunner vulnerabilities

Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were tricked into opening a crafted hyperlink, an attacker could overflow a stack buffer and execute arbitrary code. CVE-2008-0016 It was discovered that the same-origin check in Firefox...

10CVSS8.9AI score0.43921EPSS
Exploits15
Rows per page
Query Builder