The vulnerability of the JavaScript script handler in Google Chrome’s V8 browser allows attackers to disclose protected information.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to access to resources through incompatible types. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

Mozilla Firefox Code Execution Vulnerability (CNVD-2020-02976)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in previous versions of Mozilla Firefox 72 for Windows-based platforms, which stems from the program not properly handling Python scripts. An attacker could exploit the...

USN-3941-1 lua5.3 vulnerability

Fady Othman discovered that Lua incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service...

Mozilla: Crash with nested event loops

When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exploitable crash due to poor event handling. This vulnerability affects Firefox 63, Firefox ESR 60.3, and Thunderbird 60.3...

CVE-2018-8470

A security feature bypass vulnerability exists in Internet Explorer due to how scripts are handled that allows a universal cross-site scripting UXSS condition, aka "Internet Explorer Security Feature Bypass Vulnerability." This affects Internet Explorer 11...

PT-2017-4092 · Gnu +3 · Zsh +3

Name of the Vulnerable Software and Affected Versions: zsh versions prior to 5.6 Description: The issue is related to the incorrect handling of a script containing !. This could potentially allow a remote attacker to access confidential data, compromise its integrity, and cause a denial of servic...

EulerOS 2.0 SP2 : git (EulerOS-SA-2017-1188)

According to the versions of the git package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was found that the git-prompt.sh script shipped with git failed to correctly handle branch names containing special characters. A specially craft...

emacs, git, gitk, gitweb, perl security update

CentOS Errata and Security Advisory CESA-2017:2004 An update for git is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Dropbear SSH < 2016.74.0 Multiple Vulnerabilities

Binary data 700028.prm...

CVE-2016-5706

js/getscripts.js.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to cause a denial of service via a large array in the scripts parameter...

[SECURITY] Fedora 18 Update: perl-5.16.2-237.fc18

Perl is a high-level programming language with roots in C, sed, awk and she ll scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : acpid vulnerabilities (USN-1296-1)

Oliver-Tobias Ripka discovered that an ACPI script incorrectly handled power button events. A local attacker could use this to execute arbitrary code, and possibly escalate privileges. CVE-2011-2777 Helmut Grohne and Michael Biebl discovered that ACPI scripts were executed with a permissive file...

Mozilla Firefox ClearTextRun Function Memory Corruption (CVE-2009-1313)

Mozilla Firefox is a web browser developed by Mozilla Foundation. The browser is capable of interpreting and rendering many types of content published on the Internet, including various versions of HTML, XML, XUL, JavaScript, various graphics formats, and so on. The browser runs on the Windows,...

Fedora Core 10 FEDORA-2009-9428 (cyrus-imapd)

The remote host is missing an update to cyrus-imapd announced via advisory FEDORA-2009-9428. OpenVAS Vulnerability Test $Id: fcore20099428.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9428 cyrus-imapd Authors: Thomas Reinke Copyright: Copyright c...

Fedora Core 11 FEDORA-2009-9417 (cyrus-imapd)

The remote host is missing an update to cyrus-imapd announced via advisory FEDORA-2009-9417. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Fedora 11 : cyrus-imapd-2.3.14-2.fc11 (2009-9417)

fixes buffer overflow in SIEVE script handling Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Mozilla Foundation Security Advisory 2008-41

Mozilla Foundation Security Advisory 2008-41 Title: Privilege escalation via XPCnativeWrapper pollution Impact: Critical Announced: September 23, 2008 Reporter: mozbugra4, Olli Pettay Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.0.2 Firefox 2.0.0.17 Thunderbird 2.0.0.17 SeaMonkey...

CVE-2008-4060

Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to create documents that lack script-handling objects, and execute arbitrary code with chrome privileges, via vectors related to 1 the document.loadBindingDocument...

CVE-2008-4060

CVE-2008-4060 affects Mozilla Firefox (before 2.0.0.17 and 3.x before 3.0.2), Thunderbird (before 2.0.0.17), and SeaMonkey (before 1.1.12). The flaw, exploitable via document.loadBindingDocument and XSLT processing, could allow remote attackers to execute arbitrary code with chrome privileges. Th...

CVE-2008-4060

Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to create documents that lack script-handling objects, and execute arbitrary code with chrome privileges, via vectors related to 1 the document.loadBindingDocument...