Lucene search
K

70 matches found

Tenable Nessus
Tenable Nessus
added 2012/10/11 12:0 a.m.21 views

FreeBSD : mozilla -- multiple vulnerabilities (6e5a9afd-12d3-11e2-b47d-c8600054b392)

The Mozilla Project reports : MFSA 2012-74 Miscellaneous memory safety hazards rv:16.0/ rv:10.0.8 MFSA 2012-75 select element persistance allows for attacks MFSA 2012-76 Continued access to initial origin after setting document.domain MFSA 2012-77 Some DOMWindowUtils methods bypass security check...

10CVSS8.7AI score0.42609EPSS
Exploits9References45
Prion
Prion
added 2012/10/10 5:55 p.m.23 views

Code injection

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote attackers to spoof page content via vectors involving absolute positioning and scrolling...

6.8CVSS6.5AI score0.02246EPSS
Exploits0References10Affected Software6
Cvelist
Cvelist
added 2012/10/10 5:0 p.m.26 views

CVE-2012-3984

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote attackers to spoof page content via vectors involving absolute positioning and scrolling...

9.1AI score0.02246EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2012/08/29 4:38 a.m.6 views

Mozilla: Multiple Use-after-free issues (MFSA 2012-58)

Use-after-free vulnerability in the nsHTMLSelectElement::SubmitNamesValues function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code or cause a...

10CVSS7.8AI score0.05613EPSS
Exploits0References4
securityvulns
securityvulns
added 2011/10/16 12:0 a.m.100 views

Two Remote Code Execution Vulnerabilities in Internet Explorer

Vulnerability 1: Internet Explorer Select Element Remote Code Execution Original advisory: http://ifsec.blogspot.com/2011/10/internet-explorer-select-element-remote.html I. OVERVIEW There is a vulnerability in Internet Explorer which enables execution of arbitrary code if the user visits a web pa...

9.3CVSS0.6AI score0.60456EPSS
Exploits7
Zero Day Initiative
Zero Day Initiative
added 2011/10/15 12:0 a.m.36 views

Internet Explorer Select Element Cache Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS3.2AI score0.60456EPSS
Exploits5References1
seebug.org
seebug.org
added 2011/10/12 12:0 a.m.39 views

Microsoft Internet Explorer Select元素内存破坏漏洞(MS11-081)

BUGTRAQ ID: 49964 CVE ID: CVE-2011-1999 Microsoft Internet Explorer简称MSIE,是微软公司推出的一款网页浏览器。 IE在处理Select元素时在实现上存在内存破坏漏洞,远程攻击者可利用此漏洞远程代码,导致拒绝服务。 Microsoft Internet Explorer 9.x Microsoft Internet Explorer 8.x Microsoft Internet Explorer 7.x Microsoft Internet Explorer 6.x 临时解决方法:...

9.3CVSS6.4AI score0.27959EPSS
Exploits2
Prion
Prion
added 2011/07/01 10:55 a.m.12 views

Input validation

Opera before 11.50 allows remote attackers to cause a denial of service application crash via a SELECT element that contains many OPTION elements...

5CVSS6.9AI score0.02215EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/07/01 10:0 a.m.51 views

CVE-2011-2625

CVE-2011-2625 affects the Opera browser prior to 11.50. The issue is a denial-of-service crash triggered by a SELECT element containing many OPTION elements, as described in the initial entry. Connected advisories confirm that Opera 11.50 addresses multiple vulnerabilities and provides the fix fo...

5CVSS7.1AI score0.02215EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/01/31 9:0 p.m.15 views

Integer overflow

Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via an HTML form with a select element that contains a large number of children...

9.3CVSS8.1AI score0.05637EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder