7422 matches found
Mozilla SOAPParameter Object Constructor Overlow
The Mozilla web browser is installed on the remote host. The remote version of this software has an integer overflow vulnerability in the SOAPParameter object constructor. This could result in arbitrary code execution. A remote attacker could exploit this flaw by tricking a user into viewing a...
Opera Web Browser 7.53 - Location Replace URI Obfuscation
Opera Web Browser 7.53 - Location Replace URI Obfuscation source: https://www.securityfocus.com/bid/10810/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. This issue is due to a race condition error. This issue may be...
Opera Web Browser 7.53 - Location Replace URI Obfuscation
source: https://www.securityfocus.com/bid/10810/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. This issue is due to a race condition error. This issue may be leveraged by an attacker to display false information in the...
CVE-2004-0718
The CVE-2004-0718 entry covers a frame-injection vulnerability affecting multiple browsers (Mozilla 1.6, Firebird 0.7, Firefox 0.8, Netscape 7.1) where a frame from one domain injects content into a frame in another domain, facilitating web-site spoofing and related attacks. The Connected documen...
CuteNews 1.3.1 - show_archives.php Cross-Site Scripting
CuteNews 1.3.1 - showarchives.php Cross-Site Scripting source: https://www.securityfocus.com/bid/10948/info It is reported that CuteNews is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...
Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation
Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation source: https://www.securityfocus.com/bid/10679/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. It is currently not known if this issue is related to the...
Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation
source: https://www.securityfocus.com/bid/10679/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. It is currently not known if this issue is related to the Opera Web Browser Address Bar Spoofing Weakness reported in BID...
RHEL 2.1 : kdelibs (RHSA-2004:074)
Updated kdelibs packages that fix a flaw in cookie path handling are now available. Konqueror is a file manager and Web browser for the K Desktop Environment KDE. Flaws have been found in the cookie path handling between a number of Web browsers and servers. The HTTP cookie standard allows a Web...
Trend Micro Internet Security crossite scripting
Web browser component is used for warning message and filename is not filtered...
[Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability
Opera Telnet URI Handler File Creation/Truncation Vulnerability iDEFENSE Security Advisory 05.12.04 www.idefense.com/application/poi/display?id=104&type=vulnerabilities May 12, 2004 I. BACKGROUND Opera is a cross-platform web browser. More information is available from http://www.opera.com/ II...
Microsoft Internet Explorer 6 - XML Parsing Denial of Service
source: https://www.securityfocus.com/bid/10318/info Internet Explorer is reportedly affected by a XML parsing denial of service vulnerability. This issue is due to a failure of the application to properly handle malformed XML tags. Successful exploitation of this issue might allow a remote...
OpenBB 1.0.x - post.php Multiple SQL Injections
OpenBB 1.0.x - post.php Multiple SQL Injections source: https://www.securityfocus.com/bid/10214/info It has been reported that OpenBB is affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied user input. The S...
Yahoo! Messenger 5.6 - YInsthelper.dll Multiple Buffer Overflow Vulnerabilities
Yahoo! Messenger 5.6 - YInsthelper.dll Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/10199/info Yahoo! Messenger COM objects YInstHelper.YInstStarter.1 and YInstHelper.YSearchSetting2 have been reported prone to remotely exploitable buffer overflow...
PHP-Nuke 6.x/7.x - CookieDecode Cross-Site Scripting
source: https://www.securityfocus.com/bid/10128/info Reportedly PHP-NuKe is prone to a remote cross-site scripting vulnerability. This issue is due to a failure of the 'cookiedecode' function to properly sanitize user supplied cookie parameters. These issues could permit a remote attacker to crea...
Opera Web Browser 7.0 - Remote IFRAME Denial of Service
Opera Web Browser 7.0 - Remote IFRAME Denial of Service source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an...
Opera Web Browser 7.0 - Remote IFRAME Denial of Service
source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an invalid source argument. A remote attacker may exploit this...
CVE-2004-0166
CVE-2004-0166 concerns an unknown vulnerability in Apple Safari on Mac OS X 10.2.8 related to how URLs are displayed in the status bar. The CERT/Apple advisories indicate the impact is not publicly known and suggest applying Apple Security Update 2004-02-23 as a remediation. Connected records con...
CVE-2004-0092
Unknown vulnerability in Safari web browser in Mac OS X 10.2.8 and 10.3.2, with unknown impact...
Apple Mac OS X Safari fails to properly display URLs in the status bar
Overview Apple Mac OS X Safari fails to properly display URLs in the status bar. Description Safari is a web browser for the Macintosh platform. There is an unspecified vulnerability in the way Safari displays URLs in the status bar. --- Impact The complete impact of this vulnerability is not yet...
[NEWS] PSOProxy Buffer Overflow
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...